Article and title updated as 3 additional zero-days were fixed in the June 2026 Patch Tuesday. Today is Microsoft's June 2026 Patch Tuesday, with security updates for 200 flaws, including five ...

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...

Microsoft’s AutoJack research shows how a malicious webpage rendered by an AI browsing agent can reach local MCP services and ...

ClickFix attacks are delivering BabaDeda, Lorem Ipsum, and Potemkin loaders to deploy stealers, RATs, and ransomware-linked ...

The popular Mastra AI framework, used to build artificial intelligence agents, workflows and retrieval-augmented generation ...

Researchers from Zscaler found a new malware campaign dubbed Edgecution.

Time to update your CV?

Threat actors have compromised thousands of websites for the purpose of engineering industrialized ClickFix and FakeUpdate attacks in an organized malware delivery operation aimed at selling initial ...

The 68th edition of The IT Press Tour spent a week in Boston, and on 10 June it handed the floor to a company that owns no ...

Anthropic’s Claude Mythos outperformed OpenAI’s GPT5.5 on real‑world Google Chrome vulnerability exploits, a new benchmark designed to test the performance of frontier AI models to exploit real-world ...

OpenAI rolled out a major tune-up for GPT-5.5 Instant, the default model behind ChatGPT. The refresh makes the bot far better ...

Development of the AI-native DocLang document format raises questions about its impact on human workers, as well as on governance and accountability.