OpenAI is reportedly preparing a new cybersecurity-focused product that would be released first to a small group of trusted corporate partners, a move that reflects a deeper shift underway across the...
Zephyr Energy has disclosed a cybersecurity incident that led to the theft of approximately £700,000, after a payment intended for a contractor at one of its U.S.-based subsidiaries was diverted to a...
A ransomware attack on Dutch healthcare software provider ChipSoft has triggered one of the clearest warnings yet about concentration risk in modern health IT. The company sits at the center of a...
China may be facing one of the most consequential cyber incidents ever reported against its domestic technology infrastructure, after a threat actor calling itself FlamingChina claimed to have stolen...
A fragile and uncertain ceasefire between the United States and Israel on one side and Iran-linked entities on the other has done little to slow the momentum of cyber warfare. While diplomatic...
A newly identified threat group known as UNC6783 has emerged as a significant cybersecurity risk, targeting business process outsourcing (BPO) providers to gain unauthorized access to sensitive...
On April 6, 2026, the SafePay ransomware group publicly claimed responsibility for a cyberattack on AcademyHealth, one of the leading nonprofit organizations focused on health services research and...
Iranian-affiliated cyber actors are actively targeting internet-exposed programmable logic controllers across U.S. critical infrastructure, according to a new joint advisory from CISA, the FBI, NSA,...
Storm-1175 is a financially motivated cybercriminal actor tracked by Microsoft Threat Intelligence. The group specializes in high-velocity ransomware campaigns that deploy the Medusa ransomware...
A significant cyberattack on Signature Healthcare and its flagship facility, Signature Healthcare Brockton Hospital in Massachusetts, has triggered widespread operational disruptions, forcing...
A newly disclosed high-severity vulnerability, CVE-2026-34040, in Docker Engine has raised serious concerns across the cybersecurity and DevOps communities. This flaw enables attackers to bypass...
A new AI safety study is raising an uncomfortable question for the industry: what happens when advanced models do not just try to preserve themselves, but start protecting each other too? ...
Microsoft Threat Intelligence has warned that Forest Blizzard, a threat actor linked to Russian military intelligence, has been compromising vulnerable home and small-office routers and repurposing...
Hims & Hers is warning customers that a breach of its third-party customer support platform exposed personal information submitted through support tickets, adding another high-profile victim to the...
The React2Shell vulnerability, officially designated as CVE-2025-55182, has emerged as one of the most exploited flaws in modern web development frameworks. With a perfect CVSS score of 10.0, this...
Date: April 2026 A sophisticated cyber campaign attributed to an Iran-linked threat actor has exposed critical vulnerabilities in municipal cloud infrastructure, coinciding with heightened...
A newly disclosed attack technique dubbed GPUBreach has introduced a significant shift in the threat landscape by demonstrating how modern GPUs can be weaponized to achieve full system compromise. By...
Enterprise security has shifted decisively toward real-time detection and response. Traditional antivirus tools are no longer sufficient against modern threats that rely on fileless techniques,...
Check Point Research has disclosed a now-patched vulnerability in ChatGPT that allowed sensitive user data to be silently exfiltrated through DNS resolution, exposing a hidden outbound path inside...
The Axios npm compromise has quickly become one of the most important software supply chain incidents of 2026, not because the attackers poisoned a lookalike package, but because they published...