ThreatsDay Bulletin covers stealthy attack trends, evolving phishing tactics, supply chain risks, and how familiar tools are ...

Abstract: Authenticated encryption (AE) is a cryptographic mechanism that allows communicating parties to protect the confidentiality and integrity of messages exchanged over a public channel, ...

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes ...

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...

The TeamPCP hacking group is targeting Kubernetes clusters with a malicious script that wipes all machines when it detects ...

The FBI and CISA are urging Signal users to be wary of unsolicited messages claiming to be from the platform's support team.

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

Providers are testing a quantum-safe version of HTTPS that shrinks certificates to a tenth their previous size, decreasing ...

In addition to rolling out patches to address two zero-days affecting SQL Server and .NET, Microsoft introduced Common Log File System hardening with signature verification.

Abstract: Secure transmission and integrity protection of 3D mesh signals are essential in multimedia, virtual reality, and cloud-based rendering applications. Existing 3D mesh encryption methods ...

Authenticated PNG image encryption tool using PBKDF2 key derivation and HMAC-SHA256 integrity verification to prevent wrong-password corruption. A unified Python desktop application for file ...