A new phishing campaign abuses the .arpa TLD to host malicious content and hides its location via Cloudflare’s infrastructure.

Forty-two cybersecurity-related merger and acquisition (M&A) deals were announced by companies in February 2026.

A new ClickFix attack variant uses fake CAPTCHA pages instructing victims to paste and execute malicious commands in Windows Terminal.

A newly discovered InstallFix campaign relies on malicious commands on cloned installation webpages to trick victims into installing malware.

Cybersecurity startup Cylake announced its launch last week, raising $45 million in seed funding for a platform designed for highly regulated organizations that cannot use public cloud services.

New U.S. cybersecurity strategy outlines six pillars aimed at deterring cyber threats, protecting critical infrastructure, ...

Distributed through over 100 GitHub repositories, the BoryptGrab stealer targets browser, wallet, system, and other user data ...

Security firms monitoring US-Israel-Iran cyberattacks report that while hacktivist attacks spiked, state-sponsored actors ...

Google says 90 zero-day vulnerabilities were exploited in the wild in 2025, and an increasing percentage were aimed at enterprises.

JetStream Security launched with $34 million in seed funding to help organizations gain visibility into AI assets across ...

Google has patched nearly 130 vulnerabilities in Android, including an exploited zero-day bug in the graphics component of ...

LexisNexis has confirmed a data breach after hackers leaked data allegedly stolen from its systems, but impact is limited.