1,500 military digital defenders spent past week cleaning up a series of cyberattacks on fictional island Andravia and Harbadus – two nations so often at odds with one another – were once again...
The University of Minnesota has published a research brief: New research from the University of Minnesota School of Public Health provides the first detailed look at whether funding provided...
Ukrainian National Indicted and Rewards Announced for Co-Conspirators Relating to Destructive Cyberattacks Worldwide WASHINGTON — The Justice Department announced two indictments in the Central...
If this were a poll, DataBreaches would vote “yes.” DataBreaches has never really understood why breach notification letters do not have to reveal the name of a business associate or vendor if the...
Joseph J. Lazzarotti of JacksonLewis writes: When Royal Cornwall Hospital responded to a routine Freedom of Information request in 2023, they had no idea they were about to expose sensitive staff...
The FBI is warning of AI-assisted fake kidnapping scams: Criminal actors typically will contact their victims through text message claiming they have kidnapped their loved one and demand a ransom...
In 2025, a new breed of cybercriminal hit the UK mainstream: young, English-speaking hackers. Alleged ‘Scattered Spider’ attacks on high-profile UK retailers caused hundreds of millions of pounds...
Fortinet, Ivanti, and SAP have moved to address critical security flaws in their products that, if successfully exploited, could result in an authentication bypass and code execution. The Fortinet...
The Health Service Executive has started offering compensation to victims of the HSE cyberattack that occurred in May 2021. The HSE has not confirmed the amounts involved but it is understood that...
A security incident involving React was reported in December 2025. See incident details, impact on customers, and recommended security measures.
Meta description: A data breach involving Tris Pharma was reported in December 2025. See incident details, impact on customers, and recommended security measures.
A data breach involving Barts Health NHS Trust was reported in December 2025. See incident details, impact on customers, and recommended security measures.
Meta description: A data breach involving Tris Pharma was reported in December 2025. See incident details, impact on customers, and recommended security measures.
Splunk disclosed high-severity vulnerabilities in Windows Enterprise and Universal Forwarder on Dec 3, 2025. See affected versions and remediation steps.
During the authors internship at Trail of Bits, they setup the tool wycheproof on a JavaScript library called elliptic. The idea behind this package is great: let's take a collection of known...
Yearn got hacked for a third time in its long history. The author of this post dove into how the exploit works and explains it. It's important to understand what's going on and not just bookmark...
Law enforcement action has accelerated and senators are taking new legislative action against a cybercrime movement whose raison d’être is sowing terror and chaos, where young victims are extorted...
Examines Russia-India-China trilateral cooperation, U.S. tariffs and sanctions, why a formal bloc is unlikely, and implications for governments and business.
Threat actors with ties to North Korea have likely become the latest to exploit the recently disclosed critical security React2Shell flaw in React Server Components (RSC) to deliver a previously...
Plus critical critical Notepad++, Ivanti, and Fortinet updates, and one of these patches an under-attack security hole Happy December Patch Tuesday to all who celebrate. This month's patch party...
The Patch Tuesday for December of 2025 includes 57 vulnerabilities, including two that Microsoft marked as “critical.” The remaining vulnerabilities listed are classified as “important.” Microsoft...
Identity management vendors like Okta see an opening to calm CISOs worried about agents running amok The fear of AI agents running amok has thus far halted the wide deployment of these digital...
Four distinct threat activity clusters have been observed leveraging a malware loader known as CastleLoader, strengthening the previous assessment that the tool is offered to other threat actors...
Microsoft closed out the year with 1,139 total defects patched, making it the second-largest year in volume behind 2020, according to Trend Micro. The post Microsoft’s last Patch Tuesday of 2025...
The threat actor known as Storm-0249 is likely shifting from its role as an initial access broker to adopt a combination of more advanced tactics like domain spoofing, DLL side-loading, and...
Satellite silence trips immobilizers, leaving owners stuck Hundreds of Porsches in Russia were rendered immobile last week, raising speculation of a hack, but the German carmaker tells The...
Explore SentinelLABS' take on what 2026 may bring for cybersecurity, including emerging trends and actionable insights.
Zero Trust helps organizations shrink their attack surface and respond to threats faster, but many still struggle to implement it because their security tools don’t share signals reliably. 88% of...
Google on Monday announced a set of new security features in Chrome, following the company's addition of agentic artificial intelligence (AI) capabilities to the web browser. To that end, the tech...
Tom Leithauser writes: The Department of Defense would have to add new cybersecurity requirements to its contracts for telecom services when those services are used for “sensitive national...