Hackers stole $1.67bn of cryptocurrencies in the first quarter of 2025, a 303% increase

North Korea’s IT worker scam has expanded widely into Europe after years of focusing on U.S. companies, according to new research.

Delaware, USA, 2nd April 2025, CyberNewsWire

Michael Waltz used his personal Gmail to share "potentially exploitable" information, per the report.

Michael Waltz used his personal Gmail to share "potentially exploitable" information, per the report.

While its downloadable plugins make it highly customizable, KeePass’ unintuitive interface holds it back from one of our top password manager picks.

In this guest blog post, learn about six commonly missed AWS 'blind spots' that could lead to risk in your cloud infrastructure.

iOS 18.4 is here, and for some, it's causing major battery drain. Here are my top tips to get to the root of the issue and restore your iPhone's power ASAP.

​Royal Mail is investigating claims of a security breach after a threat actor leaked over 144GB of data allegedly stolen from the company's systems. [...]

The financially motivated threat actor known as FIN7 has been linked to a Python-based backdoor called Anubis (not to be confused with an Android banking trojan of the same name) that can grant...

Phishing scams are becoming brutally effective, and even technically sophisticated people can be fooled. Here's how to limit the damage immediately and what to do next.

Apple has released a series of critical security updates to address vulnerabilities that were actively exploited as zero-day threats. These updates include backported patches for older versions of...

Cybersecurity researchers have discovered an updated version of a malware loader called Hijack Loader that implements new features to evade detection and establish persistence on compromised...

Hard on the heels of the disclosure of CVE-2025-24813, a RCE flaw in Apache Tomcat actively leveraged in the wild shortly after the release of its PoC, another vulnerability identified as...

Google has found a significant increase in North Korean actors attempting to gain employment as IT workers in European companies, leading to data theft and extortion

ChatGPT, the famous artificial intelligence chatbot that allows users to converse with various personalities and topics, has connectivity issues worldwide. [...]

Kidflix, one of the largest platforms used to host, share, and stream child sexual abuse material (CSAM) on the dark web, was shut down on March 11 following a joint action coordinated by German...

The U.S. House Homeland Security Subcommittee on Cybersecurity and Infrastructure Protection reviewed the State and Local Cybersecurity Grant... The post US House Subcommittee reviews State and...

Most orgs only discover their security controls failed after a breach. With OnDefend's continuous validation, you can test, measure, and prove your defenses work—before attackers exploit blind spots. [...]

The TookPS malicious downloader is distributed under the guise of DeepSeek, and further mimics UltraViewer, AutoCAD, SketchUp, Ableton, and other popular tools.

A new version of the Triada trojan has been discovered preinstalled on thousands of new Android devices, allowing threat actors to steal data as soon as they are set up. [...]

Generative AI scraper bots are gray bots designed to extract or scrape large volumes of data from websites, often to train generative AI models. In this report we look at what the data tells us...

Gaming community Steam appeared most often in phishing emails and texts detected by Guardio in Q1 2025

Cisco warns admins to patch a critical Cisco Smart Licensing Utility (CSLU) vulnerability, which exposes a built-in backdoor admin account now used in attacks. [...]

The UK’s data protection regulator says it is overwhelmed with complaints from the public

Introduction This blog is part of a cyber threat intelligence (CTI) blog series called Tracking Adversaries that investigates prominent or new threat actors or groups. The focus of this blog is...

WALLIX, a European Identity and Access Management (IAM) and Privileged Access Management (PAM) vendor, announced the launch of... The post New WALLIX Web Session Manager elevates web application...

Keyfactor announced on Tuesday updates to EJBCA 9.1 and SignServer 7.1 Community Editions, which now include capabilities that... The post Keyfactor announces PQC capabilities in EJBCA and...

MAD Security, a managed security service provider (MSSP) specializing in cybersecurity operations for defense, maritime, and government contractors,... The post MAD Security achieves CMMC Level 2...

​​A new Cyfirma report delved into the external threat landscape of the manufacturing industry over the past three... The post Cyfirma exposes rising manufacturing cyber threats led by Chinese...