Main Menu
Cyber Security
The DockerDash Vulnerability: Understanding Its Impact on Docker Desktop and CLI
U.S. CISA’s Vulnerability Notice Revisions Spark Concerns
React Native’s Metro Server Vulnerability: A Growing Cyber Threat
Reconnaissance Attack On Citrix NetScaler Targets Login Panels with Proxy Networks
State-Sponsored Cyber Espionage: Notepad++ Update Traffic Hijacked
Cybercriminals Exploit Weak Security in 1,400 MongoDB Servers
Malicious VS Code Extensions Spread GlassWorm Loader
Surge in Fake Investment Platforms Exploiting Social Media
Fast Food Giant McDonald Calls for Creative Passwords to Enhance Security
Identity Challenges in User Data Storage and Security Maintenance
Microsoft’s Strategy to Eliminate NTLM in Favor of Kerberos
ClawHub’s Third-Party Skills Security Risks: User Data at Stake
Firefox Introduces Options to Control AI Features
Microsoft Acknowledges Shutdown Issue in Windows 10 and 11 Systems
Increasing Threats from Automated Data Extortion Targeting MongoDB
Apple Enhances Location Privacy With New Feature for iPhone and iPad
Zero-Day Vulnerabilities in Ivanti EPMM Exploited
Instagram’s Privacy Controls Data Exposure: Review of Recent Findings
Former Google Engineer Found Guilty of Stealing AI Data for Chinese Firms
eScan Antivirus Compromised: Supply Chain Security Breach Uncovered
Revelations from Epstein Files: Allegations of a “Personal Hacker”
Android Malware Incident: Hugging Face Repository Misuse
Chrome Extensions Prove Malicious with Data Hijacking Tricks
White House Revokes Software Security Rules But Keeps Key Resources
Microsoft Sets Retirement for NTLM Protocol in Windows for Enhanced Security
Startup Aisy Secures $2.3 Million Seed Fund to Enhance Vulnerability Management
Surge in Illegal Cryptocurrency Flows Reaches $158 Billion by 2025
Legal Repercussions Mount for Cognizant After TriZetto Incident
Global Crackdown Disrupts Illegal IPTV Services and Sends Strong Message
More Than 175,000 Exposed Hosts Pose Risks for Ollama LLM Misuse
23andMe Board Resigns Amidst CEO's Takeover Bid: A Battle for Control
Cybersecurity
23andMe Board Resigns Amidst CEO’s Takeover Bid: A Battle for Control
Gabby Lee September 20, 2024
All independent directors of 23andMe have resigned, citing disagreements with CEO Anne Wojcicki's plan to take the company private. This leaves Wojcicki as the sole ...
CrowdStrike Outage Sparks Security Vendor Switches: Businesses Seek Resilience After Widespread Downtime
News
CrowdStrike Outage Sparks Security Vendor Switches: Businesses Seek Resilience After Widespread Downtime
Mitchell Langley September 20, 2024
A CrowdStrike outage in July left millions of Windows devices offline, prompting some businesses to switch security vendors.
Change Healthcare Data Breach Class Action Lawsuits Update
Cybersecurity
Change Healthcare Data Breach Class Action Lawsuits Update
Gabby Lee September 20, 2024
Change Healthcare, a major healthcare technology company, suffered a massive data breach in February 2024, exposing the personal and medical information of an estimated 100 ...
Change Healthcare Data Breach Letter: What You Need to Know and How to Protect Yourself
News
Change Healthcare Data Breach Letter: What You Need to Know and How to Protect Yourself
Mitchell Langley September 20, 2024
Many in the Ozarks have received letters from Change Healthcare notifying them of a data breach. The letter details the breach, which occurred in February, ...
Disney’s Slack Data Breach Forces Disney’s to Ditch Slack
News
Disney’s Slack Data Breach Forces Disney’s to Ditch Slack
Gabby Lee September 20, 2024
Disney is severing ties with Slack after a major data breach exposed sensitive company information, highlighting the growing cybersecurity threat landscape.
DFA Data Breach: Cybersecurity Issues Put 28 Million Passports at Risk
News
DFA Data Breach: Cybersecurity Issues Put 28 Million Passports at Risk
Mitchell Langley September 20, 2024
The Department of Foreign Affairs (DFA) in the Philippines faces a potential DFA data breach affecting over 28 million passport holders due to a lack ...
38,000 Tools Shoppers Compromised in Total Tools Data Breach
News
38,000 Tools Shoppers Compromised in Total Tools Data Breach
Gabby Lee September 20, 2024
Australian hardware retailer Total Tools has confirmed a data breach affecting 38,000 customers, potentially exposing sensitive information including names, login details, and credit card information.
Harvey Nichols Data Breach: High-End Retailer Confirms Customer Data Exposure in Cyberattack
News
Harvey Nichols Data Breach: High-End Retailer Confirms Customer Data Exposure in Cyberattack
Mitchell Langley September 20, 2024
High-end British department store Harvey Nichols has confirmed a data breach affecting its customers, exposing personal information including names, addresses, phone numbers, and email addresses. ...
What is Secure by Design? A Guide for Enterprise Businesses
Application Security
What is Secure by Design? A Guide for Enterprise Businesses
Gabby Lee September 20, 2024
Secure by Design is a philosophy that emphasizes building security into the very core of software development, from the initial conceptualization to deployment and beyond. ...
Dr.Web Suffers Major Data Breach, Disconnects All Servers
News
Dr.Web Suffers Major Data Breach, Disconnects All Servers
Mitchell Langley September 19, 2024
Dr.Web, A Cybersecurity Firm Was Targeted in a Cyberattack Resulting in Data Breach
Vanilla Tempest Hackers Use INC Ransomware to Target Healthcare
Cybersecurity
Vanilla Tempest Hackers Use INC Ransomware to Target Healthcare
Gabby Lee September 19, 2024
A recent report from Microsoft reveals that a ransomware affiliate known as Vanilla Tempest has been observed using the INC ransomware to target U.S. healthcare organizations.
Compass Group Hit by Medusa Ransomware
News
Compass Group Hit by Medusa Ransomware
Gabby Lee September 19, 2024
The Compass Group, a leading global food services company headquartered in Sydney, has confirmed a significant cyberattack targeting its systems.
German Radio Station Hit by Cyberattack: "Emergency Tape" Plays On as Hackers Demand Ransom
Cybersecurity
German Radio Station Hit by Cyberattack: “Emergency Tape” Plays On as Hackers Demand Ransom
Mitchell Langley September 19, 2024
Radio Geretsried, a local radio station in Bavaria, has been forced to broadcast music from emergency backups after a ransomware attack crippled its systems.
Hunters International Claims Breach of ICBC London, Threatens Data Leak
News
Hunters International Ransomware Claims Breach of ICBC London, Threatens Data Leak
Mitchell Langley September 19, 2024
The ransomware group Hunters International has claimed responsibility for a data breach at the London branch of the Industrial and Commercial Bank of China (ICBC), ...
Data Breaches Surge to Three-Year High in Australia: A Growing Threat to Privacy and Security
Cybersecurity
Data Breaches Surge to Three-Year High in Australia: A Growing Threat to Privacy and Security
Mitchell Langley September 19, 2024
Data Breaches Surge to Three-Year High in Australia
23andMe to Pay $30 Million in Class Action Settlement for Data Breach Exposing 6.4 Million Customers
News
23andMe to Pay $30 Million in Class Action Settlement for Data Breach Exposing 6.4 Million Customers
Gabby Lee September 19, 2024
DNA testing giant 23andMe has agreed to pay $30 million to settle a class-action lawsuit stemming from a data breach that compromised the personal ...
FlyCASS Cockpit Security Breach: A Case Study of SQL Injection and its Impact on Critical Infrastructure
Blog
FlyCASS Cockpit Security Breach: A Case Study of SQL Injection and its Impact on Critical Infrastructure
Mitchell Langley September 19, 2024
The recent discovery of a critical SQL injection vulnerability in the FlyCASS cockpit access security system should serve as a stark reminder for enterprise businesses: cybersecurity ...
This Week In Cybersecurity: 9th September to 13th September
Cybersecurity
This Week In Cybersecurity: 9th September to 13th September
Mitchell Langley September 13, 2024
Avis has reported a data breach involving unauthorized access to its business application, exposing customer names and potentially sensitive information.
What is a Whaling Phishing Attack?
Blog
What is a Whaling Phishing Attack?
Andrew Doyle September 13, 2024
Whaling phishing, also known simply as whaling, is a highly targeted and sophisticated form of phishing attack that specifically targets high-level executives within an organization, such ...
Veeam Backup & Replication RCE Flaw: A Looming Threat for Enterprises
News
Veeam Backup & Replication RCE Flaw: A Looming Threat for Enterprises
Gabby Lee September 13, 2024
A critical vulnerability, CVE-2024-40711, affecting Veeam Backup & Replication (VBR), has emerged as a significant threat to enterprises, with ransomware gangs poised ...
SolarWinds Vulnerability Exploitation Prompts Immediate Response from Federal Agencies
CVE Vulnerability Alerts
SolarWinds Vulnerability Exploitation Prompts Immediate Response from Federal Agencies
Andrew Doyle February 4, 2026
UK Data Protection Authority Probes X's Grok AI for Generating Inappropriate Images
Cybersecurity
UK Data Protection Authority Probes X’s Grok AI for Generating Inappropriate Images
Mitchell Langley February 4, 2026
Everest Extortion Group and Iron Mountain Data Incident Key Insights
News
Everest Extortion Group and Iron Mountain Data Incident: Key Insights
Mitchell Langley February 4, 2026
Osiris Ransomware Disables Security Tools in Novel Attack
News
Osiris Ransomware Disables Security Tools in Novel Attack
Andrew Doyle January 28, 2026

TOP CYBERSECURITY HEADLINES

RapidFort Secures $42 Million to Enhance Software Security Automation
Cybersecurity
RapidFort Secures $42 Million to Enhance Software Security Automation
UK Data Protection Authority Probes X's Grok AI for Generating Inappropriate Images
Cybersecurity
UK Data Protection Authority Probes X’s Grok AI for Generating Inappropriate Images
The DockerDash Vulnerability Understanding Its Impact on Docker Desktop and CLI
Application Security
The DockerDash Vulnerability: Understanding Its Impact on Docker Desktop and CLI
U.S. CISA's Vulnerability Notice Revisions Spark Concerns
Cybersecurity
U.S. CISA’s Vulnerability Notice Revisions Spark Concerns

This Week’s Security Spotlight

Revelations from Epstein Files Allegations of a Personal Hacker
Cybersecurity
Revelations from Epstein Files: Allegations of a “Personal Hacker”
Andrew Doyle February 4, 2026
Nike Investigates Breach as Hackers Threaten Data Disclosure
Cybersecurity
Nike Investigates Breach as Hackers Threaten Data Disclosure
Andrew Doyle January 28, 2026
Microsoft Investigates Outlook Crashing on iPad Devices due to Coding Error
Application Security
Microsoft Investigates Outlook Crashing on iPad Devices due to Coding Error
Andrew Doyle January 28, 2026
TP-Link's Vulnerability Critical Patch for VIGI Cameras
Network Security
TP-Link’s Vulnerability: Critical Patch for VIGI Cameras
Gabby Lee January 20, 2026
More In News
Trending
Multi-Stage Phishing Campaign Targets Russia With Ransomware and Amnesia RAT
ShinyHunters Claims Responsibility for Recent Okta Phishing Attack
LastPass Users Targeted by Deceptive Phishing Campaign
Cybercriminals Exploit Social Media Messages for Malicious Payloads

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
How Infostealers Like Stealc Use TikTok Accounts to Exfiltrate Stolen Data
May 27, 2025
Podcasts
The Great Screenshot Scandal: Microsoft Recall and Signal’s DRM Shield
May 26, 2025
Podcasts
Bumblebee Malware Returns: IT Pros Targeted Through SEO Poisoning and Typosquatting
May 26, 2025

Cyber Security News

Supply Chain Attack 'GlassWorm' Malware Infects VS Code Extensions
Application Security
Supply Chain Attack: ‘GlassWorm’ Malware Infects VS Code Extensions
October 22, 2025
Prosper Data Breach 17.6 Million Accounts Compromised
Data Security
Prosper Data Breach: 17.6 Million Accounts Compromised
October 22, 2025
Myanmar Military Dismantles Cybercrime Hub, Over 2,000 Arrested
Cybersecurity
Myanmar Military Dismantles Cybercrime Hub, Over 2,000 Arrested
October 22, 2025
Odido Fined €1.5 Million for Inadequate Security in Wiretapping System
Cybersecurity
Odido Fined €1.5 Million for Inadequate Security in Wiretapping System
October 22, 2025
Verisure Data Breach Compromises 35,000 Swedish Alert Alarm Users
Cybersecurity
Verisure Data Breach Compromises 35,000 Swedish Alert Alarm Users
October 22, 2025
Getir Probes Alleged Data Leak After Hackers Claim Breach of Company Intranet
Cybersecurity
Getir Probes Alleged Data Leak After Hackers Claim Breach of Company Intranet
October 22, 2025
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
YouTube Warns of AI-Generated Phishing Attacks Targeting Creators
March 6, 2025
AI-generated video of YouTube's CEO is being used in phishing attacks to steal creators' credentials. YouTube warns users to avoid suspicious private videos and links.
US Charges Chinese Hackers Targeting Critical Infrastructure Breaches
March 6, 2025
US charges Chinese state security officers and hackers from APT27 and i-Soon for global cyberattacks targeting critical infrastructure and government agencies since 2011.
Hunters International Claims Ransomware Attack on Tata Technologies: 1.4TB Data Breached
March 6, 2025
Hunters International ransomware claims responsibility for a major attack on Tata Technologies, stealing 1.4 TB of data and threatening to release it.
Black Basta and Cactus Ransomware: Shared Tactics and BackConnect Malware Connection
March 6, 2025
Black Basta and Cactus ransomware groups share similar tactics and use BackConnect malware, highlighting the need for robust cybersecurity measures in enterprise businesses.
Cisco Warns of BroadWorks Flaw Exposing Credentials
March 6, 2025
Cisco warns of a BroadWorks flaw that could allow unauthenticated attackers to access sensitive credentials. Users are advised to implement security measures.
Broadcom Fixes Three VMware Zero-Days Exploited in Attacks
March 6, 2025
Broadcom fixes three critical VMware zero-days exploited in attacks, enabling attackers to escape virtual machine sandboxes. Immediate patching is advised.
Major Data Breach at Lost & Found Tracking Site Exposes Over 800,000 Records
March 6, 2025
A massive data breach at Lost & Found, a German travel tracking firm, exposed over 800,000 records, including passport scans and driver's licenses, raising serious ...
Polish Space Agency Suffers Cyberattack, Takes Systems Offline
March 6, 2025
The Polish Space Agency (POLSA) disconnected its systems after a weekend cyberattack. The agency is working with national CSIRT teams to restore services and investigate ...
New Polyglot Malware Targets Aviation and Satellite Communication Firms
March 6, 2025
A new polyglot malware, Sosano, targets aviation and satellite communication firms in the UAE, enabling remote command execution and persistent access on infected devices.
Eleven11bot: New Botnet Infects 86,000 Devices for DDoS Attacks
March 6, 2025
The Eleven11bot botnet has infected over 86,000 IoT devices, primarily focusing on security cameras and NVRs to launch DDoS attacks globally.
Tracking Stingrays: How Rayhunter Shields Your Mobile Privacy
March 6, 2025
In this episode, we dive into Rayhunter—an open source tool from the EFF designed to detect Stingray devices (cell-site simulators) that compromise your mobile privacy. ...
Outsourcing Cybersecurity Could Save Your Company Millions – Here’s How
March 6, 2025
The digital landscape is a battlefield, with cyberattacks growing in both frequency and sophistication. Businesses of all sizes, from small enterprises to large corporations, are ...
AI-Generated Video of YouTube’s CEO Used In Phishing Attack
March 5, 2025
BackConnect, Microsoft Teams, & Social Engineering—How Ransomware is Adapting
March 5, 2025
The ransomware landscape is shifting, and Black Basta and Cactus are at the center of it. In this episode, we break down the connections between ...
BianLian Ransomware: Shadow Data Extortion Group
March 5, 2025
The BianLian ransomware group represents a significant and growing threat to organizations worldwide. Operating with precision and stealth, they have targeted critical infrastructure and private ...
OnlyFans Cyberattacks: Fake CAPTCHAs and Malware Distribution Threaten Users
March 4, 2025
OnlyFans users are targeted by sophisticated phishing attacks deploying fake Cloudflare CAPTCHAs and malware-laden links, distributing keyloggers and ransomware. Urgent security measures are needed.
Vo1d Botnet Surpasses 1.59 Million Infected Android TVs Across 226 Countries
March 4, 2025
The Vo1d botnet has infected over 1.59 million Android TVs across 226 countries, enhancing its stealth and operational capabilities significantly.
ClickFix Attack Deploys Havoc C2 via Microsoft SharePoint
March 4, 2025
A new ClickFix attack is exploiting Microsoft SharePoint to deploy the Havoc framework, tricking users into running malicious PowerShell commands.
CISA Tags Windows and Cisco Vulnerabilities as Actively Exploited
March 4, 2025
CISA warns that critical vulnerabilities in Cisco and Windows systems are actively exploited, urging federal agencies to secure networks by March 23, 2025.
Trinity Ransomware: The Enigma of the .trinitylock
March 4, 2025
Overview: Known Aliases of Trinity Ransomware: Trinity Ransomware. Possible links to 2023Lock and Venus ransomware, implying potential shared infrastructure or development. Country of Origin: Not ...
RapidFort Secures $42 Million to Enhance Software Security Automation
UK Data Protection Authority Probes X’s Grok AI for Generating Inappropriate Images
The DockerDash Vulnerability: Understanding Its Impact on Docker Desktop and CLI
U.S. CISA’s Vulnerability Notice Revisions Spark Concerns
React Native’s Metro Server Vulnerability: A Growing Cyber Threat
Reconnaissance Attack On Citrix NetScaler Targets Login Panels with Proxy Networks
State-Sponsored Cyber Espionage: Notepad++ Update Traffic Hijacked
Cybercriminals Exploit Weak Security in 1,400 MongoDB Servers
Malicious VS Code Extensions Spread GlassWorm Loader
Surge in Fake Investment Platforms Exploiting Social Media
Fast Food Giant McDonald Calls for Creative Passwords to Enhance Security
Identity Challenges in User Data Storage and Security Maintenance
Russian Hackers Exploit Vulnerability in Microsoft Office to Target Ukraine
Microsoft’s Strategy to Eliminate NTLM in Favor of Kerberos
ClawHub’s Third-Party Skills Security Risks: User Data at Stake
Firefox Introduces Options to Control AI Features
Microsoft Acknowledges Shutdown Issue in Windows 10 and 11 Systems
Increasing Threats from Automated Data Extortion Targeting MongoDB
Apple Enhances Location Privacy With New Feature for iPhone and iPad
Zero-Day Vulnerabilities in Ivanti EPMM Exploited