SAP has released 19 new security notes on its April 2026 security patch day, including one that resolves a critical-severity ...

Elastic Security Labs has warned those in crypto and finance to watch out for an “elaborate social engineering” scam that tricks them into allowing malware through the notes app Obsidian.

Plugins for AI coding tools sound like complex infrastructure. In practice, Markdown files and an HTTP API are sufficient.

Cybercriminals exploit Obsidian Plugins to deploy PHANTOMPULSE malware, targeting crypto users via LinkedIn and Telegram in ...

To protect the Pixel modem from zero-day attacks, Google focused on the DNS parser. As cellular features have migrated to ...

PHANTOMPULSE spreads via Obsidian plugin abuse in REF6598 campaign, targeting finance and crypto users, bypassing AV controls ...

The high-end audio streaming solution Ubiquiti UniFi Play has a critical security vulnerability that allows attackers to ...

ShowDoc CVE-2025-0520 exploited due to unpatched versions before 2.8.7, enabling remote code execution on 2,000+ instances.

The latest monthly Patch Tuesday update from Microsoft landed earlier on 14 April, including two notable zero-day flaws amid ...

Hiding in imposter sites, GitHub downloads, and YouTube links, this infostealer is designed to hijack accounts and drain ...

New flagship applications-OS Upgrades and Operational Compliance-help enterprises automate network change at scale, validate outcomes, and retain evidence across complex multi-vendor environments NEW ...

CERT-In flags multiple vulnerabilities in Google Chrome that could allow remote code execution and data theft, urging users ...