CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV

Trellix Confirms Source Code Breach With Unauthorized Repository Access

30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign

Cybercrime Groups Using Vishing and SSO Abuse in Rapid SaaS Extortion Attacks

China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists

Top Five Sales Challenges Costing MSPs Cybersecurity Revenue

Two Cybersecurity Professionals Get 4-Year Sentences in BlackCat Ransomware Attacks

Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

ThreatsDay Bulletin: SMS Blaster Busts, OpenEMR Flaws, 600K Roblox Hacks and 25 More Stories

New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials

EtherRAT Distribution Spoofing Administrative Tools via GitHub Facades

New Linux ‘Copy Fail’ Vulnerability Enables Root Access on Major Distributions

Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs

Webinar: How to Automate Exposure Validation to Match the Speed of AI Attacks

What to Look for in an Exposure Management Platform (And What Most of Them Get Wrong)

Critical cPanel Authentication Vulnerability Identified — Update Your Server Immediately

CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV