Data from DLA Piper showed a 33% year-on-year fall in GDPR fines issued in Europe in 2024, with total penalties reaching €1.2bn

Xona Systems, vendor of secure access management solutions for critical systems and operational technology (OT) environments, launched Tuesday... The post Xona debuts Xona Platform to...

The Communications Sector is a key enabler of all other infrastructure sectors in the United States, and it's under continuous attack by foreign threat actors.

​Microsoft has announced that Game Assist, its recently unveiled in-game browser, is now also available in preview for Microsoft Edge Stable users. [...]

Millions of devices, including home routers, VPN servers, and CDNs are vulnerable to exploitation due to critical flaws…

Researchers at Sophos say they have seen more than 15 incidents in which two separate groups used Microsoft Office 365’s default service settings to socially engineer their way onto a victim’s system.

Endpoint detection and response (EDR) software is the best way to detect, investigate, and respond to advanced attacks. Endpoint detection and response software is a security solution that...

As operational technology (OT) environments evolve, their networks of connected devices are no longer limited to isolated industrial equipment. Today’s... The post Key Controls in Securing...

Critical flaws include those in Oracle Supply Chain products

Bitbucket is investigating a massive outage affecting Atlassian Bitbucket Cloud customers worldwide, with the company saying its cloud services are "hard down." [...]

Sophos has warned of IT impersonation vishing attacks designed to remotely deploy ransomware

A well-known hacker claims to have stolen source code and user data from the enterprise IT giant © 2024 TechCrunch. All rights reserved. For personal use only.

Cybersecurity researchers are calling attention to a series of cyber attacks that have targeted Chinese-speaking regions like Hong Kong, Taiwan, and Mainland China with a known malware called...

​A high-severity vulnerability in the 7-Zip file archiver allows attackers to bypass the Mark of the Web (MotW) Windows security feature and execute code on users' computers when extracting...

Ransomware gangs are increasingly adopting email bombing followed by posing as tech support in Microsoft Teams calls to trick employees into allowing remote control and install malware that...

The Computer Emergency Response Team of Ukraine (CERT-UA) is warning of ongoing attempts by unknown threat actors to impersonate the cybersecurity agency by sending AnyDesk connection requests....

AI SPERA announced today that it has partnered with education platform OnTheHub to provide its integrated cybersecurity solution, Criminal IP, to students and educational institutions. [...]

Data breaches can cause a loss of revenue and market value as a result of diminished customer trust and reputational damage

ISACA research claims privacy budgets are set to decline further in 2025

Non-profit organization MITRE launched D3FEND 1.0, a cybersecurity ontology aimed at standardizing the vocabulary for countering cyber threats.... The post MITRE rolls out D3FEND 1.0 to bring in...

The Health Sector Cybersecurity Coordination Center (HC3) within the U.S. Department of Health & Human Services (HHS) identified... The post US HC3 warns BEC emerges as one of ‘most financially...

New research from Claroty’s Team82 research arm uncovered three vulnerabilities in Hunting Planet WGS-804HPT industrial switch that could... The post Claroty’s Team82 exposes critical...

U.S. President Donald Trump has appointed Mark Christie as chair of the Federal Energy Regulatory Commission (FERC), the... The post Mark Christie appointed FERC chair by President Trump, takes...

Explore how the "Crazy Evil" cryptoscam gang operates, infecting thousands worldwide with infostealer malware. Learn how its tactics pose a threat to the Web3 ecosystem and digital asset security.

Learn about CVE-2024-50623 affecting Cleo MFT products. Patch now to prevent RCE attacks and secure your systems.

Explore 2024 payment fraud trends with Recorded Future: e-skimming, scam e-commerce, dark web insights, and 2025 predictions.

The threat actor TRIPLESTRENGTH uses stolen credentials and cookies, partially sourced from Racoon infostealer logs, to gain unauthorized access to victim cloud environments. Initially, they...

In 2024, UNC2165 exploited a victim's environment by a UNC1543 FAKEUPDATES infection to gain initial access. They deployed their Python tunneler, VIPERTUNNEL, for persistent access and used...

New research has uncovered security vulnerabilities in multiple tunneling protocols that could allow attackers to perform a wide range of attacks. "Internet hosts that accept tunneling packets...

The retail industry is experiencing never-before-seen transformation driven by artificial intelligence (AI). Two key areas leading this revolution…