Online shopping feels familiar and fast, but a hidden threat continues to operate behind the scenes. Researchers are tracking a long-running web skimming campaign that targets businesses connected to ...

Google has confirmed an emergency Chrome security update amid reports that attackers are exploiting two zero-day vulnerabilities.

With exploitation of vulnerabilities taking just days, preemptive security must be the new model for defenders.

That the Google Chrome web browser is under seemingly constant attack should come as no surprise to anyone. After all, with 3.5 billion users, it’s by far the most popular browser on the planet and, ...

Outpost24 was targeted in a phishing attack using a DKIM-signed email, trusted infrastructure for redirection, and protected ...

The average number of API attacks per organization in 2025 was 258, up 113% from 121 in 2024, it found. Some 61% of API attacks last year involved unauthorized workflows and abnormal activity, up from ...

OWASP just released the Top 10 for Agentic Applications 2026 - the first security framework dedicated to autonomous AI agents. We've been tracking threats in this space for over a year. Two of our ...

Magecart hides payload in favicon EXIF via third-party scripts, bypassing static analysis and stealing checkout data at runtime.

The latest IBM X-Force Trend and Risk annual report has confirmed an increase in web-based attacks, with cybercriminals using legitimate corporate websites to push malware and steal confidential data.

Learning is increasingly cloud-based and off-campus: Students across OECD countries report spending an average of 20.5 hours per week using digital learning resources, extending learning well beyond ...

From AI-powered vendors protecting email inboxes and web browsers, to providers of modern code security, here’s a look at 20 key companies in web, email and application security. While the emergence ...