Wiz Research discovered and responsibly disclosed a critical vulnerability in AWS CodeBuild that could have led to a massive platform-wide compromise.

A federal program that hit $53 billion in combined private capital and government backing last year is getting a regulatory ...

DeadLock, a ransomware group that first emerged in July 2025, has made news again, and this time it is for abusing Polygon ...

“For adults 50 and older, affordable and reliable utilities aren’t a luxury — they’re essential to health, safety and the ...

Betesh’s story highlights a troubling trend. Cryptocurrency kiosks, a favorite tool for scammers, were used in scams that led ...

Wiz researchers investigated and found the core of the flaw, a threat actor ID bypass due to unanchored regexes, and notified ...

Type-safe language for the Erlang VM and JavaScript runtimes now supports external annotations for external types.

A misconfigured AWS CodeBuild webhook allowed bypass of actor ID checks, risking takeover of four AWS GitHub repositories ...

Discover how crypto malware operates through cryptojacking and ransomware, with real-world examples such as WannaMine and PowerGhost ...

A critical misconfiguration in AWS's CodeBuild service allowed complete takeover of the cloud provider's own GitHub ...

Wiz discovered a critical vulnerability in AWS CodeBuild that allowed attackers to access core AWS repositories, including ...

A critical misconfiguration in AWS CodeBuild has allowed attackers to seize control of core AWS GitHub repositories, ...