CSO Online

Contagious Interview turns VS Code into an attack vector

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist ...

The AI That Built Itself In 10 Days Now Wants Access To Your Desktop

Anthropic launched Cowork, bringing the autonomous capabilities of its developer-focused Claude Code tool to non-technical ...

Windows info-disclosure 0-day bug gets a fix as CISA sounds alarm

A couple of other interesting bugs that Childs points out are these two, CVE-2026-20952 (CVSS 7.7) and CVE-2026-20953 (CVSS 7 ...

It’s pointless asking AI to ‘explain’ itself: But here’s an effective way we humans could hold it accountable

As governments push for ‘explainable’ AI, the realization must sink in that this approach won’t get us anywhere. But that ...

North Korean hackers using malicious QR codes in spear phishing, FBI warns

To defend against Kimsuky’s advanced quishing attacks, the FBI recommends a “multi-layered” security strategy, which includes ...

FBI warns about Kimsuky hackers using QR codes to phish U.S. orgs

The North Korean state-sponsored hacker group Kimsuki is using malicious QR codes in spearphishing campaigns that target U.S.
Dark Reading

'VoidLink' Malware Poses Advanced Threat to Linux Systems

Researchers discovered a modular, "cloud-first" framework that is feature-rich and designed to maintain stealthy, long-term ...
The Hacker News

China-Linked Hackers Exploit VMware ESXi Zero-Days to Escape Virtual Machines

Researchers found Chinese-linked attackers abused SonicWall VPN access and VMware ESXi zero-day flaws to escape VMs and gain ...
PCMag Australia on MSN

Hackers Love Windows 10. Do This One Thing to Keep Them Out

With Windows 10 no longer receiving support, it has become an easy target for hackers. That doesn't mean you have to upgrade ...
Cloud Security Alliance

Reimagining the Browser as a Critical Policy Enforcement Point: A Zero Trust Security Architecture for Modern Enterprises

Explores turning the browser into a policy enforcement point within a Zero Trust framework, covering governance, MFA, device ...

Microsoft January 2026 Patch Tuesday fixes 3 zero-days, 114 flaws

Today is Microsoft' 2026 Patch Tuesday with security updates for 114 flaws, including one actively exploited and two publicly ...
Commercial Carrier Journal

Embracing cybersecurity beyond the back office to over the road

Learn how fleets can build resilient freight systems and a robust cybersecurity posture in a world that has moved from ...