Topics

Discover how the ShadyPanda threat actor used browser extensions to spy on over 4.3 million users for seven years, evolving from affiliate fraud to a full-blown spyware operation.

Researchers have captured live footage of Lazarus Group's remote worker infiltration scheme, exposing their tactics of identity theft and remote access used to target Western companies.

Service desks are moving from reactive ticket queues to intelligent, always-on service layers that feel closer to a digital operations team than a traditional helpdesk. By 2026, AI agents embedded into the service desk will not just suggest answers or tag tickets. They will act, decide, coordinate and continuously improve, right alongside your human teams. Autonomous AI Agents & Intelligent Automation Platforms are at the center of this shift. Instead of bolting chatbots ont

Discover the new Albiriox Android malware, a sophisticated MaaS threat targeting over 400 financial apps for on-device fraud and screen control. Learn how it operates and evades detection.

CISA adds CVE-2021-26829, an actively exploited XSS vulnerability in OpenPLC ScadaBR, to its KEV catalog. Russian hacktivist group TwoNet linked to recent attacks on industrial systems.

Gainsight confirms a security incident has impacted more Salesforce customers than initially reported, with ShinyHunters claiming responsibility. Learn about the attack details and precautionary measures.

Microsoft to block unauthorized scripts in Entra ID logins starting October 2026 as part of its Secure Future Initiative to enhance security against injection attacks.

FBI reports $262M in ATO fraud losses as AI and holiday scams like Black Friday fraud and gift card draining escalate, posing significant risks to consumers and businesses.

Discover how the malicious Chrome extension 'Crypto Copilot' secretly injected hidden Solana transfer fees into Raydium swaps, siphoning funds to an attacker's wallet.