The recently discovered sophisticated Linux malware framework known as VoidLink is assessed to have been developed by a single person with assistance from an artificial intelligence (AI) model....

A draft proposal released on Tuesday, revising the EU’s Cybersecurity Act and its Network Information Systems Directive, would see member states phase out the use of high-risk suppliers within...

Dan Tentler reveals how consumer hardware coupled with Home Assistant can monitor hotel rooms, detect occupants through walls, and trigger automated alerts.

Get risk insights and take remediation actions right from your in-browser CSP portal, VCS console, or as you’re reading up on the latest threat research

Still dominant in Germany's networks, among others The European Commission (EC) wants a revised Cybersecurity Act to address any threats posed by IT and telecoms kit from third-country sources,...

Its very own Snooper’s Charter comes a month after proposed biometric tech expansion The Irish government is planning to bolster its police's ability to intercept communications, including...

5 steps to implement application control without sinking productivity—or your sanity

Minister unwraps ambassadors of the Software Security Code of Practice Britain's digital economy minister has sent forth a raft of companies as "ambassadors" to help organizations across the land...

Top DPDPA Compliance Platforms in India 2026 The Digital Personal Data Protection (DPDP) Act, introduced in 2023, marks a significant milestone in India’s journey toward robust data privacy. This...

LastPass is alerting users to a new active phishing campaign that's impersonating the password management service, which aims to trick users into giving up their master passwords. The campaign,...

No matter how many times we say it, the idea comes back again and again. Hopefully, this letter will hold back the tide for at least a while longer. Executive summary: Scientists have understood...

A security vulnerability has been disclosed in the popular binary-parser npm library that, if successfully exploited, could result in the execution of arbitrary JavaScript. The vulnerability,...

We are excited about Seqrite Data Privacy moving from lab to dogfooding to customer usage. Sometimes, we encounter a Data Deletion requirement in Seqrite Data Privacy, a privacy Management...

Ransomware negotiators dish on being in a ‘moral gray zone,’ unrestricted by accountability or industrywide rules of engagement. The post The thin line between saving a company and funding a crime...

A data breach involving Rumpke Waste & Recycling was reported in January 2026. See incident details, impact on customers, and recommended security measures.

A data breach involving Rumpke Waste & Recycling was reported in January 2026. See incident details, impact on customers, and recommended security measures.

A data breach involving Rumpke Waste & Recycling was reported in January 2026. See incident details, impact on customers, and recommended security measures.

In November 2025, the Everest ransomware group claimed Under Armour as a victim and attempted to extort a ransom, alleging they had obtained access to 343GB of data. In January 2026, customer data...

A data breach involving Rumpke Waste & Recycling was reported in January 2026. See incident details, impact on customers, and recommended security measures.

A data breach involving Microsoft was reported in January 2026. See incident details, impact on customers, and recommended security measures.

Maintainer hopes hackers send bug reports anyway, will keep shaming ‘silly ones’ The maintainer of popular open-source data transfer tool cURL has ended the project’s bug bounty program after...

A data breach involving Agricultural University of Athens was reported in January 2026. See incident details, impact on customers, and security measures.

The North Korean threat actors associated with the long-running Contagious Interview campaign have been observed using malicious Microsoft Visual Studio Code (VS Code) projects as lures to deliver...

ACME validation had a challenge-request hole Cloudflare has fixed a flaw in its web application firewall (WAF) that allowed attackers to bypass security rules and directly access origin servers,...

Chasing Shadows, the best-selling book by Citizen Lab director Ron Deibert, is now out in paperback form on the one-year anniversary of its launch. This edition includes a new afterword describing...

Learn how we are using the newly released GitHub Security Lab Taskflow Agent to triage categories of vulnerabilities in GitHub Actions and JavaScript projects. The post AI-supported vulnerability...

A set of three security vulnerabilities has been disclosed in mcp-server-git, the official Git Model Context Protocol (MCP) server maintained by Anthropic, that could be exploited to read or...

Cybersecurity researchers have uncovered a new phishing campaign that exploits social media private messages to propagate malicious payloads, likely with the intent to deploy a remote access...

Internal ICE planning documents propose spending up to $50 million on a privately run network capable of shipping immigrants in custody hundreds of miles across the Upper Midwest.

AI + skilled malware developers = security threat VoidLink, the newly spotted Linux malware that targets victims' clouds with 37 evil plugins, was generated "almost entirely by artificial...