Cybercriminals are increasingly gravitating towards uncensored LLMs, cybercriminal-designed LLMs and jailbreaking legitimate LLMs.

UK ransomware victims are paying extortionists twice as much as a year ago

Tenable One empowers security teams to go beyond surface-level risk tracking and drive measurable improvements across their security programs. With unified visibility and customizable dashboards,...

The Common Good Cyber Fund will receive funding from the UK and Canadian governments, with further pledges from G7 nations

Okta says over 46% of new customer registrations are bot-driven fraud attempts

2025-06-21 • Cert-UA • Cert-UA • win.beardshell, win.slimagent Open article on Malpedia

2025-06-18 • Seqrite • Prashil Moon • win.masslogger Open article on Malpedia

Once you turn on these new Android 16 security features, your information and phone will be better protected against harm.

Wordfence exposes a sophisticated WordPress malware campaign using a rogue WordPress Core plugin. Active since 2023, it steals credit cards and credentials with advanced anti-detection.

2025-06-23 • cocomelonc • cocomelonc Open article on Malpedia

In August 2021, the teaching resources website Have Fun Teaching suffered a data breach that leaked 80k WooCommerce transactions which were later posted to a popular hacking forum. The data...

TP-Link's new cameras feature 4K capabilities with 24/7 recording, thanks to the HomeBase H500. They're also cheaper than their closest competitors.

Millions of customers had their data stolen. Now AT&T is offering compensation.

The United States Embassy in India has announced that applicants for F, M, and J nonimmigrant visas should make their social media accounts public. The new guideline seeks to help officials verify...

In June 2025 researchers documented a campaign that breaches vulnerable South-Korean IIS web servers—and sometimes adjacent Linux hosts—by uploading ASP/ASPX web shells through file-upload flaws....

Cybercriminals are targeting financial organizations across Africa, potentially acting as initial access brokers selling data on the dark web. The post Cybercriminals Abuse Open-Source Tools To...

Dire Wolf is a newly emerged ransomware group first observed in May 2025 and Trustwave SpiderLabs recently uncovered a Dire Wolf ransomware sample that revealed for the first time key details...

The chamber’s chief administrative officer issued a memo Monday that the messaging app is not approved for official use. The post Meta confused over WhatsApp ban issued to House staffers appeared...

Le Chat and Grok are the most respectful of your privacy. So which ones are the worst offenders?

Kaspersky uncovers SparkKitty, new spyware in Apple App Store & Google Play. Steals photos, targets crypto info, active since early 2024 via malicious apps.

Originally published by Fast Company The ability to move data at will—whenever and wherever you need it—is the standard on which every AI ambition ultimately depends A funny thing happened on the...

Cybersecurity researchers have detailed two novel methods that can be used to disrupt cryptocurrency mining botnets. The methods take advantage of the design of various common mining topologies in...

Unidentified threat actors have been observed targeting publicly exposed Microsoft Exchange servers to inject malicious code into the login pages that harvest their credentials. Positive...

Threat actors are hijacking Google search results for popular AI platforms like ChatGPT and Luma AI to deliver malware, in a sprawling black hat SEO campaign uncovered by Zscaler’s ThreatLabz. The...

Google confirmed that Imagen 4, which is the company's state-of-the-art text-to-image, is rolling out for free, but only on AI Studio. [...]

The leaks to the dark web contain information “about the entire population” of Paraguay, researchers said, and likely originated with malware that infected a government employee device.

Millions of customers had their data stolen. Now AT&T is offering compensation.

AI startup Anthorpic is planning to add a memory feature to Claude in a bid to take on ChatGPT, which has an advanced memory feature. [...]

Iran-aligned hacktivists launched DDoS attacks against 15 U.S. organizations and 19 websites in the first 24 hours after the U.S. bombed Iranian nuclear targets on June 21, Cyble threat...

Google Cloud has donated its Agent2Agent (A2A) protocol to the Linux Foundation, which has now announced a new community-driven project called the Agent2Agent Project. [...]