Multiple threat actors are abusing the GitHub API to discover organizations’ repositories and members via ghost accounts.
Indirect prompt injection attacks are now draining cryptocurrency from AI agents in production. Zscaler ThreatLabz documented ...
Multiple Tenda firmware versions contain a backdoor (CVE-2026-11405) that provides access to the device’s web management ...
Learn how Microsoft uses AI to proactively harden its own cloud services through the Secure Future Initiative (SFI).
Sophos says Claude Code, Cursor, and Codex triggered Windows endpoint rules for credential access, LOLBin downloads, and ...
A one-line entry in the Claude Code v2.1.200 changelog, released July 3, 2026, changed something fundamental about how the tool behaves the moment a developer installs or updates it. Anthropic changed ...
Read five key learnings from the Frost & Sullivan 2025 Frost Radar™ for CSPM to learn how CSPM is evolving from point-in-time ...
Unsure how modern login works? Read our simple guide to OpenID Connect, explaining how this essential identity layer ...