New data from Comparitech reported that in the first half of this year, 3,627 ransomware attacks were logged,... The post New Comparitech analysis finds 47% spike in ransomware, raising concerns...

Grafana Labs has addressed four Chromium vulnerabilities in critical security updates for the Grafana Image Renderer plugin and Synthetic Monitoring Agent. [...]

ReliaQuest warns that initial access vulnerability exploitation is driving successful ransomware attacks

SentinelLabs observed North Korean actors deploying novel TTPs to target crypto firms, including a mix of programming languages and signal-based persistence

IdeaLab is notifying individuals impacted by a data breach incident last October when hackers accessed sensitive information. [...]

SentinelLabs uncovers NimDoor, new North Korea-aligned macOS malware targeting Web3 and crypto firms. Exploits Nim, AppleScript, and steals Keychain, browser, shell, and Telegram data.

​Microsoft is investigating an ongoing incident causing intermittent issues for users attempting to access SharePoint Online sites. [...]

If your Brother printer is impacted, it's crucial to change the default admin password immediately. Here's how to do it.

We analyze CVE-2025-24813 (Tomcat Partial PUT RCE) and CVE-2025-27636/29891 (Camel Header Hijack RCE). The post Apache Under the Lens: Tomcat’s Partial PUT and Camel’s Header Hijack appeared first...

Cisco has released security updates to address a maximum-severity security flaw in Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition...

LGBTIQ+ organizations in El Salvador are using technology to protect themselves and create a record of the country’s ongoing authoritarian escalations against their community. It’s not without risks.

Two elevation of privilege vulnerabilities have been discovered on the popular Sudo utility, affecting 30-50 million endpoints in the US alone

Deep cuts in cybersecurity spending risk creating ripple effects that will put many organizations at a higher risk of falling victim to cyberattacks

Frazer-Nash Consultancy released a detailed paper warning that space-based solar power (SBSP), which promises to deliver consistent, around-the-clock... The post Frazer-Nash flags security gaps in...

C2A Security, a context-driven product security orchestration platform that addresses the specific needs of software-defined products and cyber-physical... The post C2A Security and Medcrypt...

ANSSI report details the Chinese UNC5174 linked Houken cyberattack using Ivanti zero-days (CVE-2024-8190, 8963, 9380) against the French government, defence and finance sector.

Microsoft has announced that the Exchange Server Subscription Edition (SE) is now available to all customers of its enterprise email service. [...]

Once upon a time, say, 2016, Ethereum was a curious new arrival in the crypto space. It promised…

​The Hunters International Ransomware-as-a-Service (RaaS) operation announced today that it has officially closed down its operations and will offer free decryptors to help victims recover their...

Microsoft asked customers this week to disregard incorrect Windows Firewall errors that appear after rebooting their systems following the installation of the June 2025 preview update. [...]

Cisco has issued a new security advisory addressing a severe vulnerability in its Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition (Unified...

Researchers warn that a looming crisis in IoT battery waste is set to see up to 78 million batteries discarded daily by 2025.

The attacker chained Ivanti CSA zero-days to execute a base64-encoded Python script, which extracted the admin password from a local PostgreSQL database. Using this access, the attacker created or...

A Vulnerability has been discovered in Google Chrome which could allow for arbitrary code execution. Successful exploitation of the the vulnerability could allow for arbitrary code execution in...

Threat actors with ties to North Korea have been observed targeting Web3 and cryptocurrency-related businesses with malware written in the Nim programming language, underscoring a constant...

Barracuda’s Managed XDR team recently helped two companies mitigate incidents where attackers had managed to compromise computers and install rogue ScreenConnect remote management software.

The campaign uses thousands of phishing websites that mimic the design and product listings of retailers like Apple, Nordstrom and Hermes to trick people into entering their credit card information.

Okta researchers found hackers could make a phishing site with AI in just 30 seconds. Here's how to protect your business.

The insurance giant is one of the largest insurers in India.

The Scattered Spider hacking group has caused chaos among retailers, insurers, and airlines in recent months. Researchers warn that its flexible structure poses challenges for defense.