Drones have become ubiquitous in modern warfare, from Ukraine to the Middle East. The United States military is finding drones a difficult threat to counter — and even well-funded electric...

Stephenson Harwood’s Maritime & Offshore team hosted a Shipping News breakfast this week on the fast‑evolving maritime cybersecurity threat landscape, chaired by Ezio Dal Maso and featuring...

A China-linked advanced persistent threat (APT) actor has been targeting critical telecommunications infrastructure in South America since 2024, targeting Windows and Linux systems and edge...

The risk of insider threats is on the rise and businesses are concerned about the cybersecurity implications of intentionally malicious or negligent employees, research by Mimecast has warned....

Nowhere in the world has cyber threat activity been growing faster than in Latin America, thanks in part to relatively rapid digital adoption on the part of businesses in the region, combined with...

Crooks tweak familiar copy-paste ruse so that victims run malicious commands themselves A new twist on the long-running ClickFix scam is now tricking Windows users into launching Windows Terminal...

Before the dust had settled on the ruins of the Shajareh Tayyebeh school — a casualty of the recent U.S.-Israel military strikes against Iran, and one which resulted in the deaths of up to 168...

Federal agencies have issued a variety of regulations to help protect the nation’s critical infrastructure. However, these can result in conflicting guidance, inconsistencies and redundancies....

The FBI has identified a suspected cybersecurity incident on a sensitive network used to manage wiretaps and intelligence surveillance warrants, and officials are working to determine the...

With a timeline for the U.S.’s war with Iran very much up in the air, a task force assigned to improving the U.S.’s ability to down small drones both at home and abroad is eagerly awaiting lessons...

Experience full Wiz security with zero friction, managing multiple tenants in a single console

Microsoft on Thursday disclosed details of a new widespread ClickFix social engineering campaign that has leveraged the Windows Terminal app as a way to activate a sophisticated attack chain and...

FBI and French GIGN swoop on Saint Martin, John Daghita in cuffs The son of a government contractor was arrested in the Caribbean after allegedly stealing more than $46 million in seized...

In the final part of our series, we explore Reactive Risk Management. Discover how Wiz for U.S. Government transforms cloud detection and response to help satisfy FedRAMP Rev 5 IR controls and...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws impacting Hikvision and Rockwell Automation products to its Known Exploited Vulnerabilities...

Cross-Site Request Forgery (CSRF) vulnerability (CVE-2026-1468) has been found in QuickCMS software.

An unknown hacker used Anthropic’s LLM to hack the Mexican government: The unknown Claude user wrote Spanish-language prompts for the chatbot to act as an elite hacker, finding vulnerabilities in...

Released from the curse of the update bork fairy Microsoft has finally fixed a Windows Recovery Environment (WinRE) bug it introduced in Windows 10's final update.…

New research shows hundreds of attempts by apparent Iranian state hackers to hijack consumer-grade cameras, timed to missile and drone strikes. Israel, Russia, and Ukraine have also adopted this trick.

In-depth analysis of threat activity we call CL-UNK-1068. We discuss their toolset, including tunneling, reconnaissance and credential theft. The post An Investigation Into Years of Undetected...

CISA ordered U.S. federal agencies to patch three iOS security flaws targeted in cyberespionage and crypto-theft attacks using the Coruna exploit kit. [...]

Authority says attackers accessed systems holding data tied to millions of Oyster and contactless users Transport for London has confirmed that a 2024 breach exposed the data of more than 7...

President Donald Trump on Thursday said he would name Sen. Markwayne Mullin (R-Okla.) to be the next Homeland Security secretary, moving current DHS chief Kristi Noem to a special envoy role...

This report provides statistical data on published vulnerabilities and exploits we researched during Q4 2025. It also includes summary data on the use of C2 frameworks in APT attacks.

EC-Council, creator of the world-renowned Certified Ethical Hacker (CEH) credential and a global leader in applied cybersecurity education, today launched its Enterprise AI Credential Suite, with...

Threat actors are employing a new variation of the ClickFix social engineering technique called InstallFix to convince users into running malicious commands under the pretext of installing...

The ability to continue operating safely in an unsafe environment where competitors cannot is a competitive advantage that is rarely measured or discussed

The MITRE Caldera for OT team introduced HVACSim, a software-only simulator that plugs into its open-source adversary emulation... The post MITRE Caldera releases HVACSim to train OT security...

Cyolo, provider of remote privileged access for operational technology (OT) and cyber-physical systems (CPS), announced the release of... The post Cyolo PRO v7.0 introduces AI session...

Microsoft will soon begin rolling out a significant upgrade to Microsoft 365 Backup to speed up recovery by allowing administrators to restore individual files and folders. [...]