Researchers at German infosec services company Nextron Threat have spotted malware that creates a highly-persistent Linux ...

Security technology company SquareX presented significant research findings on browser security vulnerabilities and passkey authentication weaknesses at two major cybersecurity conferences, Black Hat ...

This is according to the latest “Client-Side Attack Report Q2 2025”, published by security researchers c/side. A “client-side ...

Threat actors abuse Proofpoint and Intermedia link wrapping to deliver phishing emails and steal Microsoft 365 credentials.

Wix's newly acquired 'vibe coding' platform, Base44, had a critical authentication vulnerability allowing unauthorized access ...

A critical vulnerability was discovered in Wix's vibe coding platform that exposed apps to the risk of compromise.

Two cybersecurity updates represent not just wins for the FIDO protocol, but also a possible swan song for a legacy version ...

AttackIQ has released a new emulation that compiles the Tactics, Techniques, and Procedures (TTPs) associated with the ...

Base44 owner Wix quickly patched a critical authentication bypass vulnerability discovered by researchers at Wiz.

Android users click their way to Settings General management Passwords and autofill Autofill service and select Edge. Laptop ...

The shortcoming unearthed by Wiz in Base44 concerns a misconfiguration that left two authentication-related endpoints exposed without any restrictions, thereby permitting anyone to register for ...

Think passkeys make you phishing-proof? Think again. Attackers are using downgrade attacks, device-code phishing, and OAuth ...