Wordfence has blocked 17M+ exploit attempts targeting a Gravity SMTP bug that leaks API keys, OAuth tokens, and full system reports without authentication.
Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
Researchers identified what they believe is the first documented case of a ransomware operation, JadePuffer, conducted ...
Hackers are exploiting a vulnerability in the Gravity SMTP WordPress plugin to extract configuration data, including API keys ...
Gravity SMTP WordPress vulnerability CVE-2026-4020 has drawn 17 million automated exploit attempts since May 2026, draining ...
Microsoft links the recent Mastra AI npm supply chain attack to , a North Korean group known for cryptocurrency theft ...
Organizations today must determine whether an autonomous system should be trusted to execute a specific transaction at a specific moment under defined conditions.
CCPayment Launches AI Agent Payments to Let AI Agents Send and Receive Crypto AutonomouslyNew York, USA, July 2, 2026 -- ...
Attackers don't need any special authentication to reach a target endpoint — they just need to know where it is.
The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.
Immurok has developed a biometric authentication solution that streamlines secure access on macOS and Linux desktops by ...
There is little doubt that enterprises will be deploying agentic AI. As such, technology firms are looking at various ways to ...