Threat actors are actively exploiting a critical vulnerability in the Post SMTP plugin installed on more than 400,000 WordPress sites, to take complete control by hijacking administrator accounts. [...]

At Wizdom 2025, we’re unveiling two new AI agents alongside new product innovations that deepen and extend the graph across SaaS, workloads, AI infrastructure, and external exposures. Together,...

Helping teams see clearly, decide wisely, and move safely.

How Wiz AI Agents and Integrations Meet You Where You Work

Providing unconditional visibility into your environment

How Wiz brings visibility, context, and continuous defense to the new era of intelligent automation.

Secure Microsoft 365 and the cloud it powers — one platform, one graph, complete context.

Ransomware is malicious software designed to block access to a computer system or encrypt data until a ransom is paid. This cyberattack is one of the most prevalent and damaging threats in the...

A vulnerability has been discovered in CWP (aka Control Web Panel or CentOS Web Panel), which could allow for remote code execution. CWP, or Control Web Panel, is a free server administration tool...

Threat actors are leveraging weaponized attachments distributed via phishing emails to deliver malware likely targeting the defense sector in Russia and Belarus. According to multiple reports from...

The Apache Software Foundation disputes claims that its OpenOffice project suffered an Akira ransomware attack, after the threat actors claimed to have stolen 23 GB of corporate documents. [...]

Citizen Lab director Ron Deibert is the recipient of the 2025 Sterling Prize in Support of Controversy by Simon Fraser University (SFU). The award recognizes his ongoing work at the intersection...

Citizen Lab senior researcher Alberto Fittarelli speaks with Negar Mortazavi, host of The Iran Podcast, about Israel-linked influence operations pushing for regime change in Iran. Fittarelli...

Hundreds of malicious Android apps on Google Play were downloaded more than 40 million times between June 2024 and May 2025, notes a report from cloud security company Zscaler. [...]

Citizen Lab director Ron Deibert is the recipient of the 2025 Sterling Prize in Support of Controversy by Simon Fraser University (SFU). The award recognizes his ongoing work at the intersection...

AI is becoming a buzzword among Canadian policymakers, but should there be more focus on regulation than innovation? In a new article, Citizen Lab director Ron Deibert speaks with the Financial...

Citizen Lab senior researcher Alberto Fittarelli speaks with Negar Mortazavi, host of The Iran Podcast, about Israel-linked influence operations pushing for regime change in Iran. Fittarelli...

Citizen Lab senior researcher John Scott-Railton is presenting in the panel titled “From Stasi to Spyware: Old Tactics, New Technology” at Berlin Freedom Week on November 12, 2025.

Congressional Democrats want the Federal Trade Commission (FTC) to investigate the police surveillance technology company Flock Safety for reportedly poor cybersecurity practices. Flock Safety...

Apple has released a new round of security updates for its mobile platforms, introducing iOS 26.1 and iPadOS 26.1. The latest Apple security updates are available for a wide range of devices....

Rep. Rich McCormick, R-Ga., said on Monday that the U.S. needs to pursue a free market approach to ensuring a robust and competitive artificial intelligence sector, adding that he was not...

The U.S. House Committee on Homeland Security published an updated ‘Cyber Threat Snapshot,’ outlining the heightened threats posed by malign nation-states and criminals to U.S. networks and...

Cisco Talos’ Vulnerability Discovery & Research team recently disclosed three vulnerabilities in Dell BSAFE, two in Fade In screenwriting software, and one in Trufflehog The vulnerabilities...

The worldwide ransomware landscape saw a dramatic shift in attacks in October 2025, jumping 41% month over month, with the most prolific attacker, Qlin, more than doubling the number of attacks it...

A staggering 186 percent year-over-year increase in ransomware attacks has made cybersecurity a frontline crisis for the transit industry. According to research from Check Point, the...

Microsoft plans to remove Defender Application Guard from Office by December 2027, starting with the February 2026 release of Office version 2602. [...]

Check Point lifts lid on a quartet of Teams vulns that made it possible to fake the boss, forge messages, and quietly rewrite history Microsoft Teams, one of the world's most widely used...

Trustwave SpiderLabs’ Cyber Threat Intelligence team is tracking the recent emergence of what appears to be the consolidation of three well-known threat groups into a “federated alliance” that...

Every November, we make it our mission to equip organizations with the knowledge needed to stay ahead of threats we anticipate in the coming year. The Cybersecurity Forecast 2026 report, released...

Trustwave SpiderLabs’ Cyber Threat Intelligence team is tracking the emergence and communication dynamics of the cybercriminal brand known as Scattered LAPSUS$ Hunters (SLH), consolidating...