Tara Seals

A bug (CVE-2025-53967) in the popular Web design tool's option for talking to agentic AI allows command injection leading to remote code execution (RCE).

It's a story we've all heard before, yet somehow, we keep living it. Despite years of cybersecurity awareness campaigns, training sessions, and

The encrypted messaging app uses a leaky custom protocol that allows message replays, impersonation attacks, and sensitive information exposure.

The April/May zero-day exploitations of Ivanti's mobile device management platform meant unprecedented pwning of thousands of orgs by a Chinese APT — and history will probably repeat itself.

Dark Reading asked readers about agentic AI attacks, advanced deepfake threats, board recognition of cyber-risk, and password-less technology adoption.

Security teams need to be thinking about this list of emerging cybersecurity realities, to avoid rolling the dice on enterprise security risks (and opportunities).

Dark Reading has something new hitting the newsstand: a content section purpose-built for Latin American readers, featuring news, analysis, features, and multimedia.

In the latest installment of our monthly Reporters' Notebook video series, Dark Reading's Tara Seals, TechTarget Search Security's Sharon Shea, and

The Chinese state-sponsored cyber threat is known for moving fast and trying odd attack vectors; now it's branching out in tools, victimology, and TTPs.

Some fear frontier LLMs like Mythos and Anthropic's GPT-5.5 will lead to cybersecurity annihilation. Ari Herbert-Voss notes this could be an opportunity.