DAEMON Tools supply chain attack since April 8, 2026 infects signed installers, enabling targeted malware delivery globally.

CVE-2026-31431 CVSS 7.8 flaw since 2017 enables root via 732-byte exploit, impacting major Linux distributions.

IntroductionOn March 12, 2026, Zscaler ThreatLabz discovered a malicious ZIP archive containing military-themed document lures targeting Chinese-speaking individuals. Our analysis of this sample ...

A legitimate Intel storage utility has been repurposed in a highly targeted malware campaign that uses a little-known. NET mechanism to run hostile code inside a signed executable, giving attackers a ...

AI agents are now being weaponized through prompt injection, exposing why model guardrails are not enough to protect ...

ESET warns that North Korean hackers compromised a Yanbian gaming site in a supply‑chain attack, trojanizing Windows and ...

Google Cloud has set a multi-year partnership with Avid as the companies look to add generative and agentic AI tools to the video editing process. The team-up was announced ahead of Saturday’s start ...

A prompt injection attack hit Claude Code, Gemini CLI, and Copilot simultaneously. Here's what all three system cards reveal ...

The high-severity vulnerability, tracked as CVE-2026-31431 (CVSS score: 7.8), has been codenamed “Copy Fail” by Xint.io and ...

Microsoft assigned CVE-2026-21520 to a Copilot Studio prompt injection vulnerability and patched it in January — but in Capsule Security's testing, data exfiltrated anyway. Here's what security ...

Security researchers have discovered 10 new indirect prompt injection (IPI) payloads targeting AI agents with malicious ...

About a decade ago, a group of competitive CrossFitters in Charleston, South Carolina, went looking for ways to improve their athletic performance without taking steroids. At the time, members of the ...