ThreatsDay Bulletin tracks active exploits, phishing waves, AI risks, major flaws, and cybercrime crackdowns shaping this week’s threat landscape.

Researchers show AI assistants can act as stealth C2 proxies, enabling malware communication, evasion, and runtime attack ...

DuckDuckGo is offering its own voice AI chat feature built using OpenAI models, all for free, and with no data tracking at ...

A resurrected hacking group has targeted an air medicine not-for-profit, threatening to publish stolen data by month’s end.

Following news of the cyber incident at Aussie fintech platform youX, one cyber expert has suggested that the biggest danger ...

A suspected Chinese espionage group exploited hardcoded admin credentials in Dell RecoverPoint for Virtual Machines to deploy ...

A REST API (short for Representational State Transfer Application Programming Interface) is a way two separate pieces of software can talk over the internet using standard rules. At its core, it lets ...

Learn how to build an NFT marketplace in 2026. We cover market stats, tech stacks, RWA integration, and the exact steps to ...

Fingerprinting is a workaround. There are two main forms: active and passive fingerprinting. The first involves pinging your ...

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...

Two popular AES libraries, aes-js and pyaes, “helpfully” provide a default IV in their AES-CTR API, leading to a large number of key/IV reuse bugs. These bugs potentially affect thousands of ...

The army’s “transformation in contact” exercise, carried out this fall through the Joint Pacific Multinational Readiness Center, was a good step in this direction. Although this exercise was not long ...