Concerns about the future of the MITRE CVE Program continue to circulate. The Tenable Security Response Team has created this FAQ to help provide clarity and context around this developing...

The company is investigating.

BidenCash dumps almost a million stolen credit card records on Russian forum, exposing card numbers, CVVs, and expiry dates in plain text with no cardholder names.

Google blocked 5.1 billion ads and suspended more than 39.2 million advertiser accounts in 2024, according to its 2024 Ads Safety Report released this week. [...]

Hertz has confirmed a data breach exposing customer data after a zero-day attack targeting file transfer software from Cleo Communications

ASEC Blog publishes Ransom & Dark Web Issues Week 3, April 2025 Qilin Ransomware Attack on South Korean Corporations: Threat Analysis and Implications Renowned Cybercrime Forum BreachForums...

CERT Polska has received a report about 4 vulnerabilities (from CVE-2025-1980 to CVE-2025-1983) found in Symfonia Ready_ software.

While the last-minute extension averts an immediate lapse in support, rival organizations are being stood up to supplant the global vulnerability system. The post CISA reverses course, extends...

The Common Vulnerabilities and Exposures (CVE) Program is one of the most central programs in cybersecurity, so news that MITRE’s contract to run the program was expiring sent shock waves through...

Posted by Mateusz Jurczyk, Google Project Zero Welcome back to the Windows Registry Adventure! In the previous installment of the series, we took a deep look into the internals of the regf hive...

Apple released emergency security updates to patch two zero-day vulnerabilities that were used in an "extremely sophisticated attack" against specific targets' iPhones. [...]

NVISO discovered new variants of the BRICKSTORM backdoor, initially designed for Linux, on Windows systems

Engaging with the C-suite is not just about addressing security concerns or defending budget requests. It's about establishing and maintaining an ongoing discussion that aims to align security...

The digital forensics company known as Meiya Pico won a contract in mid-2023 to build two labs at the Tibet Police College: one on offensive and defensive cyber techniques and the other on...

Cheap Android smartphones manufactured by Chinese companies have been observed pre-installed with trojanized apps masquerading as WhatsApp and Telegram that contain cryptocurrency clipper...

Palo Alto, California, 16th April 2025, CyberNewsWire

Study reveals 92% of mobile apps use insecure cryptographic methods, exposing millions to data risks

The law is due to lapse in September, something cyber experts and industry officials say would be a huge loss. The post Exclusive: Peters, Rounds tee up bill to renew expiring cyber threat...

Non-profit organization MITRE has informed that federal government funding for the Common Vulnerabilities and Exposures (CVE) and Common... The post MITRE warns of potential cybersecurity...

Rebel Global Security, in collaboration with the Interstate Natural Gas Association of America (INGAA), conducted an industry pulse... The post Rebel Global Security, INGAA reports natural gas...

A U.K. law firm specializing in crime, family fraud, sexual offenses and other sensitive matters has been fined after a hack that led to a data leak on the dark web — something the company only...

Learn how to secure your cloud identities and operationalize Zero Standing Privileges with the Wiz and CyberArk integration

Hertz confirms data breach linked to Cleo software flaw; Cl0p ransomware group leaked stolen data, exposing names, driver’s…

LastPass’ recent data breaches make it hard to recommend as a viable password manager in 2025. Learn more in our full review below.

Cisco Talos’ Vulnerability Discovery & Research team recently disclosed three vulnerabilities found in Eclipse ThreadX and four vulnerabilities in STMicroelectronics. The vulnerabilities mentioned...

Google has announced that it's retiring separate country code top-level domain names like google.co.uk or google.com.br and redirecting users to Google.com. [...]

Atlassian users are experiencing degraded performance amid an 'active incident' affecting multiple Jira products since morning hours today. Jira, Jira Service Management, Jira Work Management and...

North Korean hackers sent more than 120,000 phishing emails to nearly 18,000 individuals over a three-month campaign that impersonated South Korea’s Military Counterintelligence Command's...

The U.S. government funding for non-profit research giant MITRE to operate and maintain its Common Vulnerabilities and Exposures (CVE) program will expire Wednesday, an unprecedented development...

On April 14, 2025, 4Chan, the infamous anonymous image board, experienced downtime due to unexplained outages that left users frustrated and speculating about the cause. While the exact reason for...