ThreatsDay Bulletin tracks active exploits, phishing waves, AI risks, major flaws, and cybercrime crackdowns shaping this week’s threat landscape.

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

Wael Sawan, Shell’s chief executive, has held the position at the oil giant since 2023 - Mark R Cristino/EPA-EFE/Shutterstock Shell’s chief executive is on course ...

Pakistan-aligned APT36 and SideCopy target Indian defense and government entities using phishing-delivered RAT malware across Windows and Linux system ...

With OpenAI's latest updates to its Responses API — the application programming interface that allows developers on OpenAI's platform to access multiple agentic tools like web search and file search ...

Effortlessly deploy 500+ tools to any Linux system with a single curl command. No root, no mess, no fuss.

Today is Microsoft' 2026 Patch Tuesday with security updates for 58 flaws, including 6 actively exploited and three publicly disclosed zero-day vulnerabilities.

Knostic found 1,862 MCP servers exposed with zero authentication. Here are five actions CISOs should take now.

DES MOINES (AP) -- A former bank executive filed a lawsuit against Iowa Student Loan Liquidity Corp., accusing the lender of entering into an illegal deal to market student loans to Iowa colleges.

Meta has quietly launched its $2 billion acquisition, Manus, as an autonomous AI agent on Telegram. Discover how this "action engine" builds apps, analyzes data, and browses the web for you.

Malicious "skills" and persnickety configuration are just a few issues that security researchers have found when installing the OpenClaw AI assistant.