The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a VMware Aria Operations vulnerability tracked as ...

A fake Go module posing as golang.org/x/crypto captures terminal passwords, installs SSH persistence, and delivers the ...

PowerShell can do far more than most users realize. Explore 10 hidden capabilities that save time, improve reporting, and supercharge your workflow.

OpenClaw patches ClawJacked flaw, log poisoning bug, and multiple CVEs as 71 malicious ClawHub skills spread malware and ...

Microsoft has identified a phishing campaign using malformed links to legitimate OAuth services to redirect to malware ...

GlobalFoundries Inc. and Renesas Electronics Corp. have unveiled a multi-billion-dollar expansion of their manufacturing alliance, a move that underscores the deepening "friend-shoring" of the ...

IntroductionIn January 2026, Zscaler ThreatLabz observed activity by a suspected Iran-nexus threat actor targeting government officials in Iraq. ThreatLabz discovered previously undocumented malware ...

An attachment named New PO 500PCS.pdf.hTM, posing as a purchase order in PDF form, turned out to be something entirely different: a credential-harvesting web page that quietly sent passwords and ...

Oasis Security, the identity security platform, today released new threat research exploring a vulnerability chain in OpenClaw that allows any website to silently take full control of a developer's AI ...

It starts as a classic “PayPal refund” scam—remote access, urgency, and the same old script. But the second they get a ...

Zscaler ThreatLabz assessed with medium to high confidence that an Iranian adversary targeted Iraq’s Ministry of Foreign ...

Jon Walker and Wilson Moore break down how Nebraska looks worn down after months of a seven-man rotation and how offense and defense have flipped the script.