We are B9 and we are here to make sure YOU are not B-10. We are B9 and we are here to make sure YOU are not B-10.
- Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks
- Apple's MacOS Gap Lets Users Disable Security Tools
- Dawn of the Apex Agentic Adversary
- DoJ Seizes Huione Cloud Account Tied to Cyber Scam Money Laundering
- Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root
- Scope of Salesforce Attacks Expands as Icarus Leaks Data
- 'Cordyceps': Mushrooming Malicious Pull Requests Threaten Developer Workflows
- FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation
- Fake AI Agent Skill Passed Security Scans and Reportedly Reached 26,000 Agents
- Trump Order Sets 2030 Deadline for Federal Post-Quantum Crypto Migration
- GitHub Updates actions/checkout to Block Common Pwn Request Attack Patterns
- SocGholish Takedown Highlights Malicious TDS Threats
- FortiBleed Attackers Turn Firewalls Into Credentials Stealers as Heist Persists
- Agentic AI: The Weapon That No Longer Needs a Warrior
- Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT
- WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool
- OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws
- DifyTap Bugs Let Attackers 'Wiretap' AI Chat Histories
- ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain Attack
- Researchers Detail DifyTap Flaws in Dify That Could Expose AI Chats Across Tenants
- Crypto Heist Fueled by Elaborate Fake Reputation-Boosting Campaign
- 29-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP Requests
- He Thought He Was Secure; His Phone Number Got Stolen Anyway
- New OXLOADER Loader Uses Malicious Google Ads to Deliver CastleStealer
- Google Sets Sept. 30 Deadline for Android Developer Verification in Four Countries
