333 article(s)
A routine Microsoft Teams service update backfired, locking out users and forcing Microsoft to urgently reverse the change. Here’s what happened, why, and what it reveals about the risks of rapid software deployment.
Censys warns that almost six million public FTP servers remain exposed in 2026, posing a serious risk due to legacy protocols and misconfigurations. Despite progress, outdated defaults and poor encryption practices leave critical systems vulnerable worldwide.
A major Webex vulnerability forces Cisco customers to take action, as attackers could impersonate users. Discover the nature of the flaw, required steps, and the broader context of rising cloud security risks.
Unmonitored machine identities now outnumber employees and are fueling a new wave of cloud breaches. Learn why 'ghost credentials' are the silent saboteurs in your environment—and how security teams can fight back.
Security researchers revealed prompt injection vulnerabilities in Microsoft and Salesforce AI agents, exposing sensitive data to attackers. Despite patches, experts warn that the industry still lacks robust solutions to this escalating threat.
Cybercriminals are abusing Google Cloud Storage and Microsoft binaries to deliver Remcos RAT in phishing campaigns that outsmart traditional defenses. Discover how trust in cloud infrastructure is being weaponized—and why only behavioral security can keep organizations safe.
As cloud and AI automation surge, non-human identities like service accounts and machine credentials are multiplying—leaving organizations vulnerable. Identity Management Day 2026 highlights the urgent need to rethink digital security.
Ghost APIs, or deprecated endpoints that remain accessible, are quietly fueling major data breaches by bypassing modern security controls. Discover how attackers exploit these invisible vulnerabilities and what organizations must do to shut the door for good.
A hidden vulnerability in the EngageSDK Android library exposed millions of crypto wallets to potential data theft. Discover how the flaw worked, who was at risk, and what lessons developers and users must learn from this close call.
A critical flaw in the EngageLab SDK exposed over 50 million Android app installs—including 30 million crypto wallets—to potential data breaches. The vulnerability, now patched, highlights the hidden dangers of third-party code in the mobile app ecosystem.