Main Menu
Cyber Security
Docker Engine Vulnerability CVE-2026-34040 Allows Attackers to Bypass Authorization
Iranian Hackers Target U.S. Critical Infrastructure via Rockwell PLCs
Russia-linked APT28 Exploits Routers in Wide-ranging Espionage Campaign
Anthropic’s Claude Mythos Could Protect Critical Software — or Power the Next Wave of Cyberattacks
Trent AI Emerges From Stealth With $13 Million in Funding
Android Security Update Patches Severe StrongBox and Framework Vulnerabilities
Automated Pentesting Tools Fall Short Past the “PoC Cliff”
Critical Flowise Vulnerability Puts Systems at Risk of Code Execution
Exchange Online Mailbox Access Issues Impact Outlook Users
Shadow AI and Zero-Click Exploits Are Reshaping Mobile Security Threats
Third-Party Vendors Are the New Breach Vector Organizations Should Fear
Critical ShareFile Flaws Open the Door to Unauthenticated RCE
Strapi CMS Plugins Face Exploitation by Malicious npm Packages
Analysis Reveals .cmd Malware Escalating Privileges and Bypassing Antivirus
Fortinet Acts Quickly on Zero-Day Vulnerability Impacting FortiClient EMS Users
North Korean Cyber Operatives Drain $285 Million from Drift Exchange
Axios HTTP Client Developer Targeted in North Korean Social Engineering Campaign
Free Android VPNs Are Quietly Working Against You
Residential Proxies Are Breaking IP Reputation Systems for Malware Traffic
Drift Protocol Hit by Calculated Attack Resulting in $280 Million Loss
Apple Rolls Out DarkSword Exploit Protection to More Devices
Critical Vulnerability in Claude Code Surfaces Days After Source Code Leak
Cybercriminals Exploit Empty Properties for Postal Fraud
Cisco Releases Patches for Critical and High-Severity Vulnerabilities
Stryker Corporation Restores Operations After Cyberattack
Cybersecurity M&A Activity Surges With 38 Deals Closing in March 2026
Anthropic Confirms Internal Claude Code Leak Was Caused by Human Error
Microsoft Releases Emergency Fix for KB5079391 Update Installation Failures
Google Rolls Out Gmail Address Change and Alias Feature in the U.S.
Proton Launches Meet as a Privacy-First Alternative to Google Meet and Zoom
ResumeLooters Gang Steal Data of 2 Million in XSS Attacks Using SQL injection
News
ResumeLooters Gang Steal Data of 2 Million in XSS Attacks Using SQL injection
Mitchell Langley February 6, 2024
A threat group known as ‘ResumeLooters’ has successfully stolen the personal information of over two million job seekers by exploiting ...
CISA Advises Vendors to Secure SOHO Routers Against Volt Typhoon Attacks
Security Spotlight
CISA Advises Vendors to Secure SOHO Routers Against Volt Typhoon Attacks
Mitchell Langley February 2, 2024
The Cybersecurity and Infrastructure Security Agency has advised SOHO router manufacturers to strengthen their security against the ongoing Volt Typhoon ...
Ivanti Reveals Second Connect Secure zero-day Exploit, Urges Immediate Patching
Security Spotlight
Ivanti Reveals Second Connect Secure zero-day Exploit, Urges Immediate Patching
Gabby Lee February 2, 2024
Today, Ivanti issued a warning regarding two additional Connect Secure zero-day exploits that are affecting Connect Secure, Policy Secure, and ...
Data of 750 million Indian Mobile Users Sold on the Dark Web
Security Spotlight
Data of 750 million Indian Mobile Users Sold on the Dark Web
Mitchell Langley February 2, 2024
According to a report from cybersecurity company CloudSEK, a vast database containing the personal information of approximately 750 million Indian ...
Cloudflare Hacked by a State Sponsored Hacker Using Auth Tokens Stolen in the Okta Attack
Security Spotlight
Cloudflare Hacked by a State Sponsored Hacker Using Auth Tokens Stolen in the Okta Attack
Mitchell Langley February 2, 2024
Cloudflare has announced that its internal Atlassian server was breached by a ‘nation state attacker’. Hacker performing the Cloudflare hack ...
Blackbaud Data Breach: FTC Holds Blackbaud Responsible for Linient Data Protection Policies
Security Spotlight
Blackbaud Data Breach: FTC Holds Blackbaud Responsible for Linient Data Protection Policies
Gabby Lee February 2, 2024
Blackbaud has reached a settlement agreement with the Federal Trade Commission (FTC) following charges of inadequate security measures and irresponsible ...
This Week in Cybersecurity: 29th Jan - 2nd Feb: Medusa Ransomware Strikes Again
News
This Week in Cybersecurity: 29th Jan – 2nd Feb: Medusa Ransomware Strikes Again
Mitchell Langley February 2, 2024
Medusa Ransomware Attacks Kansas City Public Transportation Authority The Kansas City Area Transportation Authority (KCATA) revealed it was hit by ...
Fulton County Cyberattack: Cyberattack Hits Georgia County Where Trump Faces Charges
News
Fulton County Cyberattack: Cyberattack Hits Georgia County Where Trump Faces Charges
Gabby Lee January 31, 2024
The recent Fulton County cyberattack on Georgia had a widespread impact on various departments, including the office of District Attorney ...
Schneider Electric hit by Cactus Ransomware Attack
News
Schneider Electric Hit by Cactus Ransomware Attack
Mitchell Langley January 31, 2024
Schneider Electric ransomware attack has been claimed by Cactus ransomware. The attackers stole valuable corporate data from Sustainability Business division. ...
DarkGate Malware Pushed in Phishing Attacks via Group Chats of Microsoft Teams
News
DarkGate Malware Pushed in Phishing Attacks via Group Chats of Microsoft Teams
Mitchell Langley January 31, 2024
Recent phishing attacks have exploited Microsoft Teams group chat requests to distribute malicious attachments containing DarkGate malware. The attackers exploited ...
Linux glibc Flaw Lets Attackers Exploit Root Access on Major Linux Distros
Security Spotlight
Linux glibc Flaw Lets Attackers Exploit Root Access on Major Linux Distros
Gabby Lee January 31, 2024
A newly discovered vulnerability in the GNU C Library (glibc) enables attackers to gain root access on default configurations of ...
Johnson Controls Ransomware Attack Cost $27 Million After Data Breach
Ransomware
Johnson Controls Ransomware Attack Cost $27 Million After Data Breach
Mitchell Langley January 31, 2024
Johnson Controls Ransomware Attack Cost $27 Million in total and data was breached with sensitive corporate data stolen. According to ...
Keenan Warns 1.5 Million People of Data Breach: Personal Information Stolen
Security Spotlight
Keenan Warns 1.5 Million People of Data Breach: Personal Information Stolen
Mitchell Langley January 31, 2024
Keenan Warns 1.5 Million People of a significant data breach. Keenan Data Breach compromised the data of 1.5 Million customers ...
Ukrainian Hackers Wiped 2 Petabytes of Data from Russian Research Center
Cybersecurity
Ukrainian Hackers Wiped 2 Petabytes of Data from Russian Research Center
Gabby Lee January 31, 2024
Pro-Ukrainian Hackers wiped 2 petabytes of data from Russian Center for Space Hydrometeorology, a state research center that uses satellite ...
Medusa Ransomware Attacks Kansas City Public Transportation Authority
Ransomware
Medusa Ransomware Attacks Kansas City Public Transportation Authority
Mitchell Langley January 29, 2024
The Kansas City Area Transportation Authority (KCATA) disclosed that it experienced a targeted Medusa ransomware attack on Tuesday, January 23. ...
Critical Jenkins RCE Flaw (CVE-2024-23897) Exploited in the Wild
Security Spotlight
Critical Jenkins RCE Flaw (CVE-2024-23897) Exploited in the Wild
Mitchell Langley January 29, 2024
Numerous proof-of-concept (PoC) exploits have been disclosed for the Critical Jenkins RCE flaw (CVE-2024-23897), which has recently been patched. There ...
This Week in Cybersecurity: 22nd Jan – 25th Jan: Mother of All Breaches Exposes 26 Billion Records
Cybersecurity
This Week in Cybersecurity: 22nd Jan – 25th Jan: Mother of All Breaches Exposes 26 Billion Records
Gabby Lee January 26, 2024
Mother of All Breaches (MOAB) Exposes 26 Billion Records Researchers found a data breach containing 26 billion records from various ...
Blackwood Hackers Use AitM to Hijack WPS Office Update and Install NSPX30 Malware
Cybersecurity
Blackwood Hackers Use AitM to Hijack WPS Office Update and Install NSPX30 Malware
Gabby Lee January 26, 2024
The ‘Blackwood hackers’ have been engaging in cyberespionage attacks since 2018 and employs a highly sophisticated malware called NSPX30. Interestingly, ...
Hackers Stole Raw Genotype Data, Health reports in the 23andMe Data Breach
News
Hackers Stole Raw Genotype Data, Health Reports in the 23andMe Data Breach
Mitchell Langley January 26, 2024
Raw genotype data of almost 5.1 million people was stolen in the 23andMe Data Breach that went unnoticed for months. ...
HPE Hacked by Russian Hacker Group ‘Midnight Blizzard’ that Hacked Microsoft
News
HPE Hacked by Russian Hacker Group ‘Midnight Blizzard’ that Hacked Microsoft
Gabby Lee January 26, 2024
The HPE hack was attributed to a group of suspected Russian hackers known as Midnight Blizzard, also referred to as ...
Telehealth Company Hims & Hers Health Discloses Data Breach Involving Support Tickets
Cybersecurity
Telehealth Company Hims & Hers Health Discloses Data Breach Involving Support Tickets
Gabby Lee April 8, 2026
Telehealth Company Hims & Hers Health Discloses Data Breach Involving Support Tickets
Cybersecurity
Telehealth Company Hims & Hers Health Discloses Data Breach Involving Support Tickets
Gabby Lee April 8, 2026
Qilin Ransomware Group Targets German Political Party Die Linke
News
Qilin Ransomware Group Targets German Political Party Die Linke
Mitchell Langley April 7, 2026
DeepLoad Malware Poses a Multifaceted Threat with Credential Theft and Extension Installation
News
DeepLoad Malware Poses a Multifaceted Threat with Credential Theft and Extension Installation
Andrew Doyle April 2, 2026

TOP CYBERSECURITY HEADLINES

Chinese Threat Actors Exploit TrueConf Zero-Day to Breach Asian Governments
News
Chinese Threat Actors Exploit TrueConf Zero-Day to Breach Asian Governments
Iranian Hackers Target U.S. Critical Infrastructure via Rockwell PLCs
CVE Vulnerability Alerts
Docker Engine Vulnerability CVE-2026-34040 Allows Attackers to Bypass Authorization
Iranian Hackers Target U.S. Critical Infrastructure via Rockwell PLCs
Cybersecurity
Iranian Hackers Target U.S. Critical Infrastructure via Rockwell PLCs
Russia-linked APT28 Exploits Routers in Wide-ranging Espionage Campaign
Cybersecurity
Russia-linked APT28 Exploits Routers in Wide-ranging Espionage Campaign

This Week’s Security Spotlight

Android Security Update Patches Severe StrongBox and Framework Vulnerabilities
Cybersecurity
Android Security Update Patches Severe StrongBox and Framework Vulnerabilities
Mitchell Langley April 8, 2026
Bogus Traffic Violation Text Scam Targeting Americans
News
Bogus Traffic Violation Text Scam Targeting Americans
Andrew Doyle April 7, 2026
Apple Rolls Out DarkSword Exploit Protection to More Devices
Cybersecurity
Apple Rolls Out DarkSword Exploit Protection to More Devices
Mitchell Langley April 3, 2026
Critical Vulnerability in Claude Code Surfaces Days After Source Code Leak
Application Security
Critical Vulnerability in Claude Code Surfaces Days After Source Code Leak
Gabby Lee April 3, 2026
More In News
Trending
New Phishing Techniques Threaten TikTok Business Account Security
Cryptocurrency Threats via Phishing Campaign Targeting French-Speaking Corporations
LeakNet Ransomware Adopts ClickFix to Trick Users Into Compromising Themselves
Phishing Attack Hits Intuitive’s Internal IT Business Systems

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Sorry, we couldn't find any posts. Please try a different search.

Cyber Security News

Critical “Brash” Vulnerability in Chromium’s Blink Engine Can Instantly Crash Browsers
Application Security
Critical “Brash” Vulnerability in Chromium’s Blink Engine Can Instantly Crash Browsers
October 30, 2025
OpenAI Upgrades GPT-5 to Better Handle Conversations Involving Emotional Distress
Application Security
OpenAI Upgrades GPT-5 to Better Handle Conversations Involving Emotional Distress
October 30, 2025
Surge in NFC Relay Malware Hits Android Users Across Eastern Europe
Application Security
Surge in NFC Relay Malware Hits Android Users Across Eastern Europe
October 30, 2025
Conduent Discloses Data Breach Impacting 10.5 Million Individuals
Application Security
Conduent Discloses Data Breach Impacting 10.5 Million Individuals
October 30, 2025
Proton Launches Dark Web Data Breach Observatory to Expose Hidden Cyber Threats
Cybersecurity
Proton Launches Dark Web Data Breach Observatory to Expose Hidden Cyber Threats
October 30, 2025
PhantomRaven Campaign Exploits AI Package Suggestions to Get into Developer Systems
Cybersecurity
PhantomRaven Campaign Exploits AI Package Suggestions to Get into Developer Systems
October 30, 2025
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
Marriott Agrees $52m Settlement for Data Breach: A Deep Dive into Cybersecurity Failures and Legal Ramifications
October 14, 2024
Marriott's $52 million settlement resolves a massive data breach impacting 339 million records, highlighting critical cybersecurity failures and legal ramifications.
Pokemon Data Breach Reveals Secrets of Unannounced Games and Nintendo Switch 2 Codename
October 14, 2024
A massive Pokemon data breach reveals unreleased game details, the Nintendo Switch 2 codename, and even a canceled Detective Pikachu sequel. The Pokemon data leak ...
This Week In Cybersecurity: 7th October to 11th October
October 14, 2024
MoneyGram Cyberattack: No Ransomware Evidence Found, Social Engineering Suspected In September 2024, MoneyGram experienced a cyberattack leading to a five-day service outage. Initial fears of ...
Internet Archive Breach Exposes Data of 31 Million Users
October 10, 2024
The internet archive breach exposed data of 31 million users. The attack involved the theft of a user authentication database containing sensitive information like email ...
Salt Typhoon APT Subverts Law Enforcement Wiretapping
October 9, 2024
The Chinese state-sponsored Salt Typhoon APT infiltrated US broadband providers, accessing law enforcement wiretapping systems and general internet traffic, potentially for months. This represents a ...
ADT Discloses Second Breach in 2 Months: Stolen Credentials Fuel Data Exfiltration
October 9, 2024
Casio's network suffered a significant breach on October 5th, 2024, causing IT system failures and service disruptions. The investigation is ongoing to determine the extent ...
MoneyGram Cyberattack: Hackers Confirmed to Have Stolen Customer Data
October 9, 2024
The MoneyGram cyberattack resulted in the theft of customer data, including transaction details, personal information, and government IDs. The attackers used social engineering to gain ...
Casio Network Breach: IT Systems Fail After CyberAttack
October 9, 2024
Casio's network suffered a significant breach on October 5th, 2024, causing IT system failures and service disruptions. The investigation is ongoing to determine the extent ...
American Water Cyberattack: Major US Utility Shuts Down Systems After Security Breach
October 8, 2024
American Water cyberattack has forced the largest water and wastewater utility company in the US to shut down some of its systems following a significant cyber ...
FBCS Data Breach Impacts Millions, Including Comcast and Truist Bank Customers
October 8, 2024
The FBCS data breach exposed the personal information of millions, including Comcast and Truist Bank customers, highlighting the vulnerability of sensitive data within third-party systems.
Highline Public Schools Ransomware Attack Forces the School to Shut Down Classes
October 8, 2024
Highline Public Schools confirmed a ransomware attack caused its September shutdown, impacting over 17,500 students. The district is rebuilding systems and re-imaging devices, offering employees ...
MoneyGram Cyberattack: No Ransomware Evidence Found, Social Engineering Suspected
October 8, 2024
MoneyGram's recent cyberattack, initially suspected to be ransomware, was instead caused by a social engineering attack targeting the company's internal help desk.
Red Barrels, Outlast Developer, Suffers Data Breach: Source Code, Employee Data Compromised
October 8, 2024
Red Barrels, the Outlast developer, suffered a major data breach, compromising source code, employee data, and financial information, causing significant production delays.
This Week In Cybersecurity: 30th September to 4th October
October 8, 2024
This Week In Cybersecurity: 30th September to 04th October highlights major incidents, including Bank of America's outage causing $0 balance displays, CF Medical's data breach, ...
Bank of America Outage: Is Your Account Balance Zero?
October 3, 2024
A Bank of America outage left many customers seeing $0 balances, sparking widespread concern and frustration. The issue, which affected Zelle payments, is largely resolved, ...
Urgent Security Alert: Critical Ivanti Endpoint Manager Vulnerabilities Discovered
October 3, 2024
Critical Ivanti Endpoint Manager vulnerabilities (CVE-2023-35083 & CVE-2023-35084) allow unauthorized file access and exfiltration. Immediate patching is crucial
Wayne County Cyberattack Cripples Government Services: Ransom Demand Fuels Investigation
October 3, 2024
Wayne County cyberattack crippled government services, with hackers demanding a ransom. The FBI and Michigan State Police are investigating.
Verizon Outage Leaves Hundreds of Thousands Without Service
October 3, 2024
A major Verizon outage left over 200,000 customers without cell service for over 10 hours. Verizon cited a "network issue" but offered no further details ...
Feldstein & Stewart Data Breach Letter Sent to 8,171 Individuals
October 2, 2024
Feldstein & Stewart sent a data breach letter to 8,171 individuals following a serious security incident that compromised sensitive consumer information.
CF Medical Announces Data Breach Stemming from FBCS Data Breach
October 2, 2024
CF Medical announced a data breach linked to FBCS data breach, exposing sensitive consumer information. Notifications have been sent to affected individuals.
Chinese Threat Actors Exploit TrueConf Zero-Day to Breach Asian Governments
Docker Engine Vulnerability CVE-2026-34040 Allows Attackers to Bypass Authorization
Iranian Hackers Target U.S. Critical Infrastructure via Rockwell PLCs
Russia-linked APT28 Exploits Routers in Wide-ranging Espionage Campaign
Anthropic’s Claude Mythos Could Protect Critical Software — or Power the Next Wave of Cyberattacks
Trent AI Emerges From Stealth With $13 Million in Funding
Android Security Update Patches Severe StrongBox and Framework Vulnerabilities
Automated Pentesting Tools Fall Short Past the “PoC Cliff”
Critical Flowise Vulnerability Puts Systems at Risk of Code Execution
Exchange Online Mailbox Access Issues Impact Outlook Users
Shadow AI and Zero-Click Exploits Are Reshaping Mobile Security Threats
Third-Party Vendors Are the New Breach Vector Organizations Should Fear
Critical ShareFile Flaws Open the Door to Unauthenticated RCE
Strapi CMS Plugins Face Exploitation by Malicious npm Packages
Bogus Traffic Violation Text Scam Targeting Americans
Qilin Ransomware Group Targets German Political Party Die Linke
Analysis Reveals .cmd Malware Escalating Privileges and Bypassing Antivirus
Fortinet Acts Quickly on Zero-Day Vulnerability Impacting FortiClient EMS Users
North Korean Cyber Operatives Drain $285 Million from Drift Exchange
Axios HTTP Client Developer Targeted in North Korean Social Engineering Campaign