Proofpoint says UNK_MassTraction exploited patched Roundcube flaws to target U.S. and Canadian university mail servers.
Article and title updated as 3 additional zero-days were fixed in the June 2026 Patch Tuesday. Today is Microsoft's June 2026 Patch Tuesday, with security updates for 200 flaws, including five ...
Lazarus Group concealed a four-module remote access toolkit inside six fake npm Rollup polyfill packages that fired at import ...
Google has introduced Genkit Agents in preview, enabling developers to build AI agents with multi-agent workflows, session management, human approvals, and HTTP deployment for full-stack applications.
Claude Code dynamic workflows are now generally available on all paid plans, including Pro for the first time. The feature writes its own orchestration scripts and coordinates up to 1,000 parallel ...
JFrog's security research lab, based in Silicon Valley, said Friday (local time) it had discovered six malicious packages in ...
Google Chrome is warning developers that WebMCP tools can be used to manipulate and hijack AI agents. New guidance outlines how attackers can manipulate agents operating in a user’s browser, including ...
The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel artifacts across 19 packages in the Python Package Index (PyPI) registry, as the ...
Credential stuffing tests stolen password lists against your login form until one matches. Here is how to spot the traffic ...
Plus, CCH Axcess adds complex document ingestion and interpretation; TaxStatus launches Planning Observations to automate discovery; and other accounting tech news and updates.
Explore the latest news and expert commentary on Application Security, brought to you by the editors of Dark Reading ...