Palo Alto Networks researchers haven’t been able to identify who’s behind the commercial-grade tech yet.

The tech giant didn’t report active exploitation of any of the patched defects, yet details about potential impacts remain limited.

The model, currently in beta mode, is designed to automatically scan, analyze and patch vulnerabilities in private and open-source code bases. 

Kaspersky researchers said Memento Labs appears to be behind both the Operation ForumTroll malware and spyware, known as Dante.

The China-linked operation has grown from a phishing kit marketplace into an active and growing community supporting a decentralized large-scale phishing ecosystem.

The high-severity defect affects a widely used — but largely hidden — archive tool that spans many forks.

Following a funding scare that nearly shuttered the CVE program, outside experts and CISA are positioning to take charge of the 25-year-old system before the next funding…

Research from Cisco Talos and Google Threat Intelligence Group underscores the extent to which North Korea-aligned attackers attempt to avoid detection.

The Chinese hacking group gained persistent access to a popular mapping tool by turning one of its features into a webshell and hardcoding access, according to ReliaQuest. 

The vendor belatedly admitted the max-severity vulnerability was actively exploited weeks after researchers and officials confirmed as much independently.