malware

NGate Malware Trojanizes HandyPay App to Steal Contactless PINs in Brazil

ESET Research has uncovered a new NGate variant that trojanizes the legitimate HandyPay Android app to relay NFC data and intercept PI…

May 24, 2026views - 169

phishing

Fake Data Breach Alerts: When the Warning Becomes the Trap

Cybercriminals are weaponizing 'breach fatigue' and generative AI to craft hyper-realistic phishing alerts that mimic official inciden…

May 24, 2026views - 195

anthropic

Anthropic’s Project Glasswing Unearths 10,000 Flaws, Triggering 'Patching Paralysis'

Project Glasswing identified over 10,000 critical vulnerabilities in just one month. As Anthropic’s Claude Mythos model accelerates di…

May 23, 2026views - 356

VULNZERO-DAY

AI Unearths 300 WordPress Zero-Days for $20 Each: The Human Triage Crisis

A high-efficiency AI pipeline has discovered over 300 critical zero-day vulnerabilities in WordPress plugins at an estimated cost of $…

May 22, 2026views - 225

CYBERSEC

GitLab 19.0 Debuts Native Secrets Management and Air-Gapped AI

GitLab 19.0 integrates native secrets management, agentic merge request workflows, and self-hosted AI models, reinforcing its 'single…

May 22, 2026views - 150

CYBERSEC

30-Minute Lateral Breakouts: Why the SOC is Losing the Race Against AI-Driven Threats

Average breakout times have accelerated by 29%, with the fastest recorded exfiltration dropping from over four hours to just six minut…

May 22, 2026views - 156

CYBERSECEXPLOIT

Unit 42: Frontier AI Models Exploiting Open-Source Transparency to Automate Supply Chain Attacks

Frontier AI models are demonstrating the autonomous reasoning required to identify vulnerabilities in open-source code and orchestrate…

May 22, 2026views - 163

CYBERSEC

Talos Unveils AI Honeypots to Trap Malicious Agents: The Rise of Cognitive Warfare

Cisco Talos demonstrates how generative honeypots can deceive automated AI threats by weaponizing their lack of contextual awareness a…

May 22, 2026views - 159

CYBERSEC

PoC Zealot: Autonomous AI Executes End-to-End GCP Cloud Attack

Unit 42’s Zealot project demonstrates how multi-agent AI systems can autonomously chain SSRF, credential theft, and BigQuery exfiltrat…

May 21, 2026views - 150