ThreatsDay roundup covering stealthy attacks, phishing trends, exploit chains, and rising security risks across the threat landscape.

A newly disclosed security vulnerability tracked as CVE-2026-32746 is drawing serious attention across the security community due to its potential ...

Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco Secure Firewall Management Center software, as a zero-day vulnerability more than a month before Cisco patched the hole, ...

During an investigation into exposed OpenWebUI servers, the Cybernews research team identified a malicious campaign targeting vulnerable OpenWebUI servers with cryptocurrency miners and Info Stealers.

AI-assisted code speeds development, but introduces vulnerabilities at an alarming rate. Waratek IAST reports flaws ...

Oracle has released version 26 of the Java programming language and virtual machine. As the first non-LTS release since JDK ...

Cortex 3.0 delivers AI-powered code generation, vulnerability scanning, Enterprise AI & DevSecOps integrations, ...

The RondoDox botnet has expanded its exploit list to 174 vulnerabilities, increased its activity, and shifted to more targeted exploitation.

CVSS severity scores often mislead vulnerability prioritization when business context is ignored, leaving critical exposures ...

The Cloud Native Computing Foundation (CNCF) announced recently that Dragonfly, its open source image and file distribution system, has reached graduated status, the highest maturity level within the ...

Microsoft would like to remind users about cyber criminals who attempt to take advantage of users who are aware of Java security alerts by creating fake virus alerts that force you to download ...