Researchers found 35 Docker Hub images, including Debian builds, still carrying the XZ Utils backdoor a year later, ...

Coordinated brute-force attacks hit Fortinet SSL VPNs and FortiManager, involving 780+ malicious IPs from U.S., Canada, ...

ShinyHunters and Scattered Spider are teaming up in a coordinated Salesforce phishing and extortion campaign, with ...

Dutch NCSC warns of CVE-2025-6543 Citrix attacks on critical organizations, urging urgent patches to prevent further breaches ...

The Ultimate Battle: Enterprise Browsers vs. Enterprise Browser Extensions examines this choice across nine "rounds": ...

Refined exposure management cuts remediation by 96%, aligning security with business priorities for stronger, efficient ...

Malicious actors have been observed exploiting a now-patched critical security flaw impacting Erlang/Open Telecom Platform ...

The maintainers of the WinRAR file archiving utility have released an update to address an actively exploited zero-day ...

Cybersecurity researchers have discovered a fresh set of security issues in the Terrestrial Trunked Radio (TETRA) ...

SafeBreach found four Windows DoS flaws via RPC and LDAP, enabling stealth DDoS botnets. Microsoft patched in 2025.

Here's a look at some of the biggest stories in cybersecurity this week: from new flaws in WinRAR and NVIDIA Triton to advanced attack techniques you should know about. Let's get into the details.

Automated tools give you visibility. Adversarial testing gives you clarity. In Salesforce environments, you need both.