The denial-of-service (DoS) exploit takes advantage of two features in HTTP/2 that were designed to save Internet bandwith, not power massive amplification attacks.

A major bug in Oracle's ERP software disproportionately affected American universities, and hackers have capitalized by stealing gobs of data.

Hackers are valuing quality over quantity, using AI to upgrade their phishing attacks rather than multiply them.

Threat actors are taking advantage of Internet-exposed tank gauges by breaching gas stations, opening the door to disruption.

One of the world's most diverse, least-focused cybercrime groups is enlarging its footprint beyond East Asia.

Despite broadly connected digital infrastructure, standard fare TTPs are enough to cause trouble for Afghanistan's porous cybersecurity.

A threat actor got a near-continuous view into an influential finance executive's email inbox, thanks to clever use of legitimate, native Windows tools.