Dark Reading Opens The State of Application Security Survey – Dark Reading
Take part in the new survey from Dark Reading and help uncover trends, challenges, and solutions shaping the future of application security. – Read More
2025
Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection – The Hacker News
A critical security flaw has been disclosed in LangChain Core that could be exploited by an attacker to steal sensitive secrets and even influence large language model (LLM) responses through…
7 SASE certifications to validate converged network and security skills – CSO Online
As cyberattacks grow more sophisticated and AI-powered threats escalate, enterprises are under pressure to evolve beyond traditional perimeter-based network security. Many are turning to Secure Access Service Edge (SASE), a…
ThreatsDay Bulletin: Stealth Loaders, AI Chatbot Flaws AI Exploits, Docker Hack, and 15 More Stories – The Hacker News
It’s getting harder to tell where normal tech ends and malicious intent begins. Attackers are no longer just breaking in — they’re blending in, hijacking everyday tools, trusted apps, and…
LastPass 2022 Breach Led to Years-Long Cryptocurrency Thefts, TRM Labs Finds – The Hacker News
The encrypted vault backups stolen from the 2022 LastPass data breach have enabled bad actors to take advantage of weak master passwords to crack them open and drain cryptocurrency assets…
Fortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass Vulnerability – The Hacker News
Fortinet on Wednesday said it observed “recent abuse” of a five-year-old security flaw in FortiOS SSL VPN in the wild under certain configurations. The vulnerability in question is CVE-2020-12812 (CVSS…
CISA Flags Actively Exploited Digiever NVR Vulnerability Allowing Remote Code Execution – The Hacker News
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a security flaw impacting Digiever DS-2105 Pro network video recorders (NVRs) to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of…
CERN: how does the international research institution manage risk? – CSO Online
There are few research institutions in the world with the size and scope of the European Organization for Nuclear Research, CERN. Founded in 1954 by 12 European countries, the European…
New MacSync macOS Stealer Uses Signed App to Bypass Apple Gatekeeper – The Hacker News
Cybersecurity researchers have discovered a new variant of a macOS information stealer called MacSync that’s delivered by means of a digitally signed, notarized Swift application masquerading as a messaging app…
Nomani Investment Scam Surges 62% Using AI Deepfake Ads on Social Media – The Hacker News
The fraudulent investment scheme known as Nomani has witnessed an increase by 62%, according to data from ESET, as campaigns distributing the threat have also expanded beyond Facebook to include…
Attacks are Evolving: 3 Ways to Protect Your Business in 2026 – The Hacker News
Every year, cybercriminals find new ways to steal money and data from businesses. Breaching a business network, extracting sensitive data, and selling it on the dark web has become a…
Webrat turns GitHub PoCs into a malware trap – CSO Online
Security professionals hunting PoCs and exploit code on GitHub might soon walk into a trap, as attackers redirect a known RAT toward them. Researchers have uncovered a stealthy campaign in…
SEC Files Charges Over $14 Million Crypto Scam Using Fake AI-Themed Investment Tips – The Hacker News
The U.S. Securities and Exchange Commission (SEC) has filed charges against multiple companies for their alleged involvement in an elaborate cryptocurrency scam that swindled more than $14 million from retail…
Implementing NIS2 — without getting bogged down in red tape – CSO Online
NIS2 is symbolic of the core problem with European directives and regulations: They generate unnecessary red tape and too rarely have the desired effect. Whether it’s the Supply Chain Act,…
Italy Fines Apple €98.6 Million Over ATT Rules Limiting App Store Competition – The Hacker News
Apple has been fined €98.6 million ($116 million) by Italy’s antitrust authority after finding that the company’s App Tracking Transparency (ATT) privacy framework restricted App Store competition. The Italian Competition…