Chainguard announced hat it has raised $280 million in a growth funding round from General Catalyst’s Customer Value Fund (CVF).

Threat actors are impersonating various services in a massive smishing campaign that has been ongoing since April 2024.

All new Firefox extensions will be required to declare their personal data collection and transmission practices in the ...

Three critical-severity vulnerabilities in the GutenKit and Hunk Companion WordPress plugins have been exploited in a new campaign.

Ransomware payments and payment rates dropped significantly in the third quarter of 2025, according to Coveware.

The exploitation of the first Chrome zero-day of 2025 is linked to tools used in attacks involving Hacking Team’s new Dante ...

Pwn2Own advertised it as a potential $1 million WhatsApp exploit, but Meta only received information on two low-risk bugs.

Researchers found a critical jailbreak in the ChatGPT Atlas omnibox that allows malicious prompts to bypass safety checks.

Contacted by SecurityWeek, Eugene, who appears to be from China, described Pwn2Own as an “amazing event”. The researcher said ...

Microsoft released out-of-band updates to patch the WSUS vulnerability CVE-2025-59287 and exploitation of the flaw was seen just hours later.

Shortly after Perplexity launched its Comet AI browser, threat actors attempt to capitalize on it by luring users to fake domains and apps.

North Korean state-sponsored group Lazarus is targeting European companies tied to the drone sector in new Operation Dream ...