A recent authentication bypass vulnerability in the SimpleHelp remote monitoring and management (RMM) software has been exploited for malware delivery. Tracked as CVE-2026-48558 (CVSS score of 10), ...

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...

Microsoft Threat Intelligence identified an active multi-stage intrusion campaign targeting hospitality organizations in ...

More users have been encountering this situation as Netflix has gradually required that each profile under a Netflix ...

A cybersecurity researcher uncovered two authentication flaws in Johnson & Johnson web applications that exposed sensitive recruiter tools, employee records, and an internal audit management system.

Microsoft has announced that Microsoft 365 users must enable multi-factor authentication (MFA) support by February 9th, otherwise they will not be able to log in to the service’s admin center.

JavaScript is a programming language that developers use to make interactive webpages. JavaScript has made webpages and web applications dynamic. It is responsible for refreshing social media feeds, ...

Google is apparently having trouble identifying paywalled content due to a standard way paywalled content is handled by publishers like news sites. It’s asking that publishers with paywalled content ...

Update 7/25:25: Expel researchers have recanted their story, stating that while the the threat actors are attempting to use a phishing attacks to bypass FIDO authentication, the Cross-Device ...

Azure AD (Azure Active Directory) is Microsoft's cloud-based identity and access management service. It helps employees of an organization sign in and access. One of its core functions is doing ...

More than a third (36%) of people have had at least one online account compromised due to weak or stolen passwords in the past year, according to new research by the FIDO Alliance. The survey by the ...

Attackers exploit human nature, making authentication a prime target. The Snowflake data breach is a clear example – hackers used stolen customer credentials, many which lacked multi-factor ...