IoT

DKnife's modular architecture allows for a wide range of malicious activities, including hijacking binary downloads and Android application updates to deliver malware like the ShadowPad and DarkNimbus backdoors.

The campaign exploits older home routers that no longer receive security updates.

File-borne threats move from IT into OT via portable media, transient devices, and cross-domain file exchanges. These pathways can evade perimeter and segmentation controls, jeopardizing operational continuity. This session showcases a field-tested, unified defense: validate transient media at ingress, enforce one-way transfer between zones, and g...

Amazon-owned Ring has introduced a new video authenticity feature called Ring Verify.

During the first day of Pwn2Own Automotive 2026, security teams earned a total of $516,500 by exploiting 37 zero-day vulnerabilities.

The command injection vulnerability was discovered by Zoom's Offensive Security team within Zoom Node Multimedia Routers (MMRs) prior to version 5.2.1716.0.

The vulnerability, with a CVSS score of 8.7, allowed attackers on a local network to bypass authentication in the password recovery feature.