Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

March 20, 2026 at 11:17PM Trivy, a popular open-source vulnerability scanner maintained by Aqua Security, was compromised a sec…

DoJ Disrupts 3 Million-Device IoT Botnets Behind Record 31.4 Tbps Global DDoS Attacks

March 20, 2026 at 11:55AM The U.S. Department of Justice (DoJ) on Thursday announced the disruption of command-and-control (C2)…

Apple Warns Older iPhones Vulnerable to Coruna, DarkSword Exploit Kit Attacks

March 20, 2026 at 10:46AM Apple is urging users who are still running an outdated version of iOS to update their iPhones to sec…

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers

March 20, 2026 at 12:46AM Cybersecurity researchers have flagged a new malware dubbed Speagle that hijacks the functionality an…

54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security

March 20, 2026 at 12:22AM A new analysis of endpoint detection and response (EDR) killers has revealed that 54 of them leverage…

How Ceros Gives Security Teams Visibility and Control in Claude Code

March 19, 2026 at 04:28PM Security teams have spent years building identity and access controls for human users and service acc…

DarkSword iOS Exploit Kit Uses 6 Flaws, 3 Zero-Days for Full Device Takeover

March 19, 2026 at 02:44PM A new exploit kit for Apple iOS devices designed to steal sensitive data from is being wielded by mul…

CISA Warns of Zimbra, SharePoint Flaw Exploits; Cisco Zero-Day Hit in Ransomware Attacks

March 19, 2026 at 11:35AM The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has urged government agencies to app…

4 Ways EdTech Companies Are Using WYSIWYG Editors to Power Interactive Assessments

March 19, 2026 at 01:21AM Assessments in modern LMS platforms go beyond multiple-choice questions. Product teams are building q…

Product Walkthrough: How Mesh CSMA Reveals and Breaks Attack Paths to Crown Jewels

March 18, 2026 at 04:00PM Security teams today are not short on tools or data. They are overwhelmed by both.  Yet within the te…

Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit

March 18, 2026 at 01:38PM A high-severity security flaw affecting default installations of Ubuntu Desktop versions 24.04 and la…

Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS

March 18, 2026 at 12:01PM Apple on Tuesday released its first round of Background Security Improvements to address a security f…