Gravity SMTP WordPress vulnerability CVE-2026-4020 has drawn 17 million automated exploit attempts since May 2026, draining ...

Wordfence has blocked 17M+ exploit attempts targeting a Gravity SMTP bug that leaks API keys, OAuth tokens, and full system reports without authentication.

Hackers are exploiting a vulnerability in the Gravity SMTP WordPress plugin to extract configuration data, including API keys ...

Remember when writing code was free? AI is pushing software development into usage-billed proprietary platforms. But history ...

Hackers are mass-exploiting a Gravity SMTP WordPress flaw, leaking API keys from 100,000 sites. Update to 2.1.5 now.

This week, Mandiant detailed a Cisco SD-WAN hack as attackers exploited Ubiquiti flaws. London Hydro disclosed a customer ...

Attackers are exploiting CVE-2026-4020 in Gravity SMTP to leak API keys, OAuth tokens, and system data from WordPress sites.

Researchers found 15 malicious JetBrains plugins posing as AI coding tools that exfiltrate OpenAI, DeepSeek, and SiliconFlow ...

Security researchers identified a coordinated malware campaign within the JetBrains Marketplace designed to exfiltrate ...

Some more advanced smart home users are likely to fall afoul of the rule change if they directly access the SmartThings AP ...

Three popular plugins served malicious JavaScript through a compromised CDN.

A popular npm package for OpenAI Codex with 29,000 weekly downloads has been stealing developer authentication tokens for a month. The same credential-theft chain also ran through two Android apps ...