A global cross-industry credential theft campaign is exploiting public-facing Web applications vulnerable to React2Shell and then deploying an automated collection tool to steal credentials and other valuable system data for further malicious activity. Researchers at Cisco Talos discovered the campaign,… Read More "Automated Credential Harvesting Campaign Exploits React2Shell"
Corporate IT and security teams have the unenviable task of keeping relentless and increasingly sophisticated adversaries at bay. They’re often faced with limited resources and expanding attack surfaces, but recruiting and retaining top-tier security professionals to run an in-house Security… Read More "How SMBs use threat research and MDR to build a defensive edge"
OpenAI is stepping up its push to bolster the security framework surrounding its enterprise-focused AI ecosystem. Recently, the AI giant has looked to address the need for agentic AI security testing through its acquisition of agentic security testing firm Promptfoo.… Read More "OpenAI’s Promptfoo Deal Plugs Agentic AI Testing Gap"
Posted by Dave Kleidermacher, VP, Platforms Security & Privacy, Google Technology should bring people closer together, not create walls. Being able to communicate and connect with friends and family should be easy regardless of the phone they use. That’s why… Read More "A Secure Approach to Cross-Platform File Sharing"
The Axios attack has highlighted the sophistication, scalability, and industrialization of social engineering attacks. Late last month, the NPM package of Axios, an extremely popular JavaScript HTTP client library, was compromised in a social engineering attack. A threat actor, believed… Read More "How Complex Social Engineering Is Industrialized"
The ability to continue operating safely in an unsafe environment where competitors cannot is a competitive advantage that is rarely measured or discussed 06 Mar 2026 • , 5 min. read Cybersecurity is one of the few business functions where… Read More "What cybersecurity actually does for your business"
The UK’s National Crime Agency (NCA) has teamed up with the National Federation of Builders (NFB) to warn the construction sector of the growing risks of invoice fraud. The awareness campaign is aimed at accounts payable and finance personnel in… Read More "Invoice Fraud Costs UK Construction Sector Millions, NCA Warns"
Amid horrific threats from United States president Donald Trump as the US and Iran negotiated a ceasefire, the US government warned this week that Iran-linked hackers were carrying out attacks against US energy and water infrastructure targets. With nearly one… Read More "Your Push Notifications Aren’t Safe From the FBI"
Posted by Aden Haussmann, Associate Product Manager and Sumeet Sharma, Play Partnerships Trust & Safety Lead Android uses the best of Google AI and our advanced security expertise to tackle mobile scams from every angle. Over the last few years,… Read More "Android expands pilot for in-call scam protection for financial apps"
RSAC 2026 Conference kicked off with a whirlwind of insights, debates, and predictions about the future of cybersecurity, with a particular focus on the ever-evolving role of artificial intelligence (AI). On day one, Informa TechTarget’s Jamison Cush and Sabrina Polin… Read More "Debates Shape RSAC 2026 Cybersecurity Trends"
