Main Menu
Cyber Security
Docker Engine Vulnerability CVE-2026-34040 Allows Attackers to Bypass Authorization
Iranian Hackers Target U.S. Critical Infrastructure via Rockwell PLCs
Russia-linked APT28 Exploits Routers in Wide-ranging Espionage Campaign
Anthropic’s Claude Mythos Could Protect Critical Software — or Power the Next Wave of Cyberattacks
Trent AI Emerges From Stealth With $13 Million in Funding
Android Security Update Patches Severe StrongBox and Framework Vulnerabilities
Automated Pentesting Tools Fall Short Past the “PoC Cliff”
Critical Flowise Vulnerability Puts Systems at Risk of Code Execution
Exchange Online Mailbox Access Issues Impact Outlook Users
Shadow AI and Zero-Click Exploits Are Reshaping Mobile Security Threats
Third-Party Vendors Are the New Breach Vector Organizations Should Fear
Critical ShareFile Flaws Open the Door to Unauthenticated RCE
Strapi CMS Plugins Face Exploitation by Malicious npm Packages
Analysis Reveals .cmd Malware Escalating Privileges and Bypassing Antivirus
Fortinet Acts Quickly on Zero-Day Vulnerability Impacting FortiClient EMS Users
North Korean Cyber Operatives Drain $285 Million from Drift Exchange
Axios HTTP Client Developer Targeted in North Korean Social Engineering Campaign
Free Android VPNs Are Quietly Working Against You
Residential Proxies Are Breaking IP Reputation Systems for Malware Traffic
Drift Protocol Hit by Calculated Attack Resulting in $280 Million Loss
Apple Rolls Out DarkSword Exploit Protection to More Devices
Critical Vulnerability in Claude Code Surfaces Days After Source Code Leak
Cybercriminals Exploit Empty Properties for Postal Fraud
Cisco Releases Patches for Critical and High-Severity Vulnerabilities
Stryker Corporation Restores Operations After Cyberattack
Cybersecurity M&A Activity Surges With 38 Deals Closing in March 2026
Anthropic Confirms Internal Claude Code Leak Was Caused by Human Error
Microsoft Releases Emergency Fix for KB5079391 Update Installation Failures
Google Rolls Out Gmail Address Change and Alias Feature in the U.S.
Proton Launches Meet as a Privacy-First Alternative to Google Meet and Zoom
Steam Game Mod Breached to Push Password-Stealing Malware
News
Steam Game Mod Breached to Push Password-Stealing Malware
Gabby Lee January 2, 2024
On Christmas Day, the fan expansion called “Downfall” for the indie strategy game Slay the Spire was compromised in the ...
APT28 Hacking Collective Targets Ukraine with MASEPIE Malware – Ukraine’s CERT-UA Issues Security Alert
Security Spotlight
APT28 Hacking Collective Targets Ukraine with MASEPIE Malware – CERT-UA Issues Security Alert
Andrew Doyle December 29, 2023
The Computer Emergency Response Team (CERT) of Ukraine has issued a warning regarding a recent phishing campaign. The threat actor ...
Lockbit Ransomware Disrupts Healthcare Systems at German KHO Network of Hospitals
Ransomware
Lockbit Ransomware Disrupts Healthcare Systems at German KHO Network of Hospitals
Mitchell Langley December 29, 2023
Katholische Hospitalvereinigung Ostwestfalen (KHO), a hospital network in Germany, has confirmed that the recent service disruptions experienced at three of ...
First American Cyber Attack Disrupts Closings: No New Updates from the American Title Insurance Firm
Security Spotlight
First American Cyber Attack Disrupts Closings: No New Updates from the American Title Insurance Firm
Andrew Doyle December 28, 2023
The nation’s second-largest title insurer, and its subsidiaries are currently experiencing an ongoing system outage following the First American cyber ...
Liberty Hospital Cyber Attack Forces Kansas City to Transfer Patients and Reschedule Appointments
Ransomware
Liberty Hospital Cyber Attack Forces Kansas City to Transfer Patients and Reschedule Appointments
Mitchell Langley December 27, 2023
A hospital in the vicinity of Kansas City, Missouri, is facing challenges in delivering patient care due to a cyberattack ...
Yakult Cyber Incident Leads to 95 GB Data Leak – DragonForce Claims the Cyber Attack
Security Spotlight
Yakult Cyber Incident Leads to 95 GB Data Leak – DragonForce Claims the Cyber Attack
Gabby Lee December 27, 2023
Yakult Australia, the manufacturer of a popular probiotic milk drink, recently faced a cyber incident. The Yakult Cyber Incident has ...
Barracuda Zero Day Vulnerability Exploited by UNC4841 – Barracuda Remotely Patches Email Security Gateway Appliances
Security Spotlight
Barracuda Zero Day Vulnerability Exploited by UNC4841 – Barracuda Remotely Patches Email Security Gateway Appliances
Gabby Lee December 27, 2023
According to Barracuda, a leading network and email security firm, they have successfully applied remote patches to all active Barracuda ...
Integris Health Data Breached: Patients Receive Extortion Emails, Data of 2 Million Compromised
Security Spotlight
Integris Health Data Breached: Patients Receive Extortion Emails, Data of 2 Million Compromised
Mitchell Langley December 27, 2023
Integris Health, Oklahoma’s largest not-for-profit health network, has recently experienced a cyberattack resulting in the theft of patient data. The ...
Mr. Cooper Data Breach Affects 14.7 Million – Mortgage Firm Shuts Down IT Systems
Security Spotlight
Mr. Cooper Data Breach Affects 14.7 Million – Mortgage Firm Shuts Down IT Systems
Andrew Doyle December 27, 2023
Mr. Cooper Data Breach has sent shockwaves amongst the cybersecurity community as the mortgage lending firm was forced to shut ...
GTA 5 Source Code Leaked a Year After GTA 6 Leaks in Rockstar Hack
Security Spotlight
GTA 5 Source Code Leaked a Year After GTA 6 Leaks in Rockstar Hack
Gabby Lee December 27, 2023
Recent reports have surfaced the internet that on Christmas Eve, the source code for GTA 5 source code leaked on ...
Security Spotlight
Synology Security Advisory SA-22:15 GLPI Disclosed Multiple Remote Access Vulnerabilities
Andrew Doyle December 26, 2023
Synology Security Advisor SA-22:15 revealed multiple vulnerabilities that allow remote access to sensitive information, add web scripts, HTML, or inject ...
Ace Hardware Cyber Attack Disrupts Operations and Cripples IT Systems
Ransomware
Ace Hardware Cyber Attack Disrupts Operations and Cripples IT Systems
Gabby Lee December 22, 2023
Ace Hardware, the American hardware retailers’ cooperative, has experienced significant disruptions to its operations following a cyber attack in 2023. ...
First American Financial Hacked: Takes IT Systems Offline to Contain the Breach
Ransomware
First American Financial Hacked: Takes IT Systems Offline to Contain the Breach
Mitchell Langley December 22, 2023
First American Financial Corporation, the second-largest and one of the very first American title insurance companies in the US, has ...
How to Conduct a Cybersecurity Risk Assessment: Step-by-Step Guide
Cybersecurity
How to Conduct a Cybersecurity Risk Assessment: Step-by-Step Guide
Mitchell Langley December 21, 2023
In today’s digital landscape, cybersecurity is a top concern for organizations of all sizes. As cyber threats continue to evolve ...
Enhance Your Email Security: 15 Best Email Security Practices for 2024
Cybersecurity
Enhance Your Email Security: 15 Best Email Security Practices for 2024
Andrew Doyle December 20, 2023
Securing emails is crucial for enterprises due to various compelling reasons, which is why they need robust email security. Given ...
OilRig APT Uses Downloader Malware for Cyberespionage
Cybersecurity
OilRig APT Uses Downloader Malware for Cyberespionage
Gabby Lee December 15, 2023
Iranian state-sponsored threat actor OilRig, also known as APT34, continued its cyber espionage endeavors throughout 2022, deploying three distinctive downloader ...
Spear Phishing vs Phishing: How Do Spear Phishing Attacks Differ from Standard Phishing Attacks?
Cybersecurity
Spear Phishing vs Phishing: How Do Spear Phishing Attacks Differ from Standard Phishing Attacks?
Gabby Lee December 14, 2023
In today’s digital landscape, where communication is predominantly virtual, the threat of phishing attacks—especially spear phishing—has escalated. Phishing refers to ...
Spider-Man Developer Insomniac Games Hit by Rhysida Ransomware
Cybersecurity
Spider-Man Developer Insomniac Games Hit by Rhysida Ransomware
Gabby Lee December 13, 2023
Since its emergence in May 2023, Rhysida ransomware has gained notoriety as an emerging threat actor in the cybercrime landscape. ...
Toyota Cyberattack: Medusa Ransomware Strikes Toyota, Customer Data Compromised
Cybersecurity
Toyota Cyberattack: Medusa Ransomware Strikes Toyota, Customer Data Compromised
Andrew Doyle December 12, 2023
Toyota Financial Services (TFS), a subsidiary of Toyota Motor Corporation, faces the aftermath of a cyberattack, courtesy of the Medusa ...
Canadian Government's Data Security Compromised Affecting its Contractors
Cybersecurity
Canadian Government’s Data Security Compromised Affecting its Contractors
Andrew Doyle November 21, 2023
In a recent cybersecurity incident, the Canadian government has reported that two of its contractors, Brookfield Global Relocation Services (BGRS) ...
Telehealth Company Hims & Hers Health Discloses Data Breach Involving Support Tickets
Cybersecurity
Telehealth Company Hims & Hers Health Discloses Data Breach Involving Support Tickets
Gabby Lee April 8, 2026
Telehealth Company Hims & Hers Health Discloses Data Breach Involving Support Tickets
Cybersecurity
Telehealth Company Hims & Hers Health Discloses Data Breach Involving Support Tickets
Gabby Lee April 8, 2026
Qilin Ransomware Group Targets German Political Party Die Linke
News
Qilin Ransomware Group Targets German Political Party Die Linke
Mitchell Langley April 7, 2026
DeepLoad Malware Poses a Multifaceted Threat with Credential Theft and Extension Installation
News
DeepLoad Malware Poses a Multifaceted Threat with Credential Theft and Extension Installation
Andrew Doyle April 2, 2026

TOP CYBERSECURITY HEADLINES

Chinese Threat Actors Exploit TrueConf Zero-Day to Breach Asian Governments
News
Chinese Threat Actors Exploit TrueConf Zero-Day to Breach Asian Governments
Iranian Hackers Target U.S. Critical Infrastructure via Rockwell PLCs
CVE Vulnerability Alerts
Docker Engine Vulnerability CVE-2026-34040 Allows Attackers to Bypass Authorization
Iranian Hackers Target U.S. Critical Infrastructure via Rockwell PLCs
Cybersecurity
Iranian Hackers Target U.S. Critical Infrastructure via Rockwell PLCs
Russia-linked APT28 Exploits Routers in Wide-ranging Espionage Campaign
Cybersecurity
Russia-linked APT28 Exploits Routers in Wide-ranging Espionage Campaign

This Week’s Security Spotlight

Android Security Update Patches Severe StrongBox and Framework Vulnerabilities
Cybersecurity
Android Security Update Patches Severe StrongBox and Framework Vulnerabilities
Mitchell Langley April 8, 2026
Bogus Traffic Violation Text Scam Targeting Americans
News
Bogus Traffic Violation Text Scam Targeting Americans
Andrew Doyle April 7, 2026
Apple Rolls Out DarkSword Exploit Protection to More Devices
Cybersecurity
Apple Rolls Out DarkSword Exploit Protection to More Devices
Mitchell Langley April 3, 2026
Critical Vulnerability in Claude Code Surfaces Days After Source Code Leak
Application Security
Critical Vulnerability in Claude Code Surfaces Days After Source Code Leak
Gabby Lee April 3, 2026
More In News
Trending
New Phishing Techniques Threaten TikTok Business Account Security
Cryptocurrency Threats via Phishing Campaign Targeting French-Speaking Corporations
LeakNet Ransomware Adopts ClickFix to Trick Users Into Compromising Themselves
Phishing Attack Hits Intuitive’s Internal IT Business Systems

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Sorry, we couldn't find any posts. Please try a different search.

Cyber Security News

QNAP Warns Windows Backup Software Impacted by ASP.NET Flaw
Cybersecurity
QNAP Warns Windows Backup Software Impacted by ASP.NET Flaw
October 28, 2025
NCX Exchange Data Leak Exposes User Wallets, Passwords, and Authentication Keys
Cybersecurity
NCX Exchange Data Leak Exposes User Wallets, Passwords, and Authentication Keys
October 28, 2025
Dublin Airport Attack Claimed by Russian Ransomware Group Everest
Cybersecurity
Dublin Airport Attack Claimed by Russian Ransomware Group Everest
October 28, 2025
HSBC USA Data Breach Exposes Sensitive Customer Financial Information
Cybersecurity
HSBC USA Data Breach Exposes Sensitive Customer Financial Information
October 28, 2025
Pwn2Own Ireland 2025 $1M Reward for 73 Zero-Day Exploits Uncovered
Cybersecurity
Pwn2Own Ireland 2025: $1M Reward for 73 Zero-Day Exploits Uncovered
October 28, 2025
OpenAI Atlas Omnibox Vulnerability Prompt Injection Flaw Exposes Unauthorized Access Risks
Application Security
OpenAI Atlas Omnibox Vulnerability: Prompt Injection Flaw Exposes Unauthorized Access Risks
October 27, 2025
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
Cicada3301 Ransomware with New Linux Encryptor: A New Threat To VMware ESXi Systems
September 12, 2024
A new ransomware-as-a-service (RaaS) operation named Cicada3301 has emerged, posing a significant threat to businesses worldwide. The group has already claimed 19 victims on its ...
1.7 Million People Hit in Massive Credit Card Data Breach: What to Do Now?
September 11, 2024
A major credit card data breach has impacted nearly 1.7 million individuals, raising concerns about the security of sensitive financial information.
PIXHELL Acoustic Attack: Leaking Secrets from LCD Screen Noise
September 11, 2024
A novel acoustic attack named ‘PIXHELL’ can leak secrets from audio-gapped systems, and without requiring speakers, through the LCD monitors they connect to.
Indodax Hack: A Major Blow to Indonesian Crypto Security
September 11, 2024
Hackers targeted Indodax's hot wallet, which is a cryptocurrency wallet that is connected to the internet and used for frequent transactions.
LiteSpeed Cache Vulnerability Exposes 6 Million WordPress Sites to Takeover Attacks: A Critical Security Flaw
September 9, 2024
A critical severity vulnerability has been discovered in LiteSpeed Cache, a popular caching plugin used by over 6 million WordPress sites. The flaw, tracked as ...
Russian Military Hackers Linked to Critical Infrastructure Attacks: A Deep Dive into GRU Unit 29155
September 9, 2024
GRU Unit 29155: A Growing Threat to Global Security
This Week In Cybersecurity: 2nd September to 6th September, VK Data Leak Exposes 390 Million Users
September 9, 2024
VK Data Leak, Voldemort Malware Abusing Google Sheets, DICK’S Sporting Goods Cyberattack and more.
Critical Remote Code Execution Flaw in Progress LoadMaster: A 10/10 Severity Vulnerability
September 9, 2024
This vulnerability, tracked as CVE-2024-7591, allows attackers to remotely execute commands on vulnerable devices, posing a significant risk to organizations relying on these products.
Avis Data Breach: Customer Data Stolen in Attack on Business Application
September 9, 2024
Car Rental Giant Avis Suffers Data Breach, Exposing Customer Information
Ransomware Attacks Continue to Take a Major Toll on Critical Infrastructure Organizations
September 6, 2024
Ransomware attacks targeting critical national infrastructure (CNI) organizations have reached alarming heights, with costs soaring to unprecedented levels. A new report from Sophos reveals a ...
Clearview AI Fined €30.5 Million for Unlawful Data Collection
September 5, 2024
Dutch Data Protection Authority Takes Action Against Clearview AI Facial Recognition Company
VK Data Leak Exposes 390 Million Users: HikkI-Chan Strikes Again
September 5, 2024
HikkI-Chan Claims Responsibility for VK Data Breach
North Korean Hackers Target Job Seekers with Fake FreeConference App: Contagious Interview Campaign
September 5, 2024
North Korean threat actors, known for their sophisticated cyberattacks, have been targeting job seekers with a fake Windows video conferencing application disguised as FreeConference.com.
What is a DDoS Attack – A Complete Guide
September 5, 2024
This comprehensive guide delves into the intricacies of DDoS attacks, their mechanisms, common types, and effective mitigation strategies, empowering enterprise businesses to safeguard their online ...
Verkada to Pay $2.95 Million for Security Failures Leading to Breaches
September 3, 2024
Security Camera Vendor Faces FTC Action for Lax Security Practices
CBIZ Discloses Data Breach Affecting Nearly 36,000 Individuals
September 3, 2024
CBIZ Benefits & Insurance Services (CBIZ), a leading provider of financial, benefits, and insurance services, has disclosed a data breach that impacted nearly 36,000 individuals
TfL Cyberattack: Transport for London Under Attack
September 3, 2024
Transport for London (TfL), the city's transportation authority, is currently investigating an ongoing cyberattack. While the attack is ongoing, TfL has assured the public that ...
This Week in Cybersecurity: 26th August to 30th August, BlackSuit Ransomware Stole Data
September 2, 2024
BlackSuit Ransomware disrupts software vendor, Cyberattack on airport, nonprofit and government websites, credit union customers impacted by data breach.
DICK’S Sporting Goods Cyberattack Shuts Down Email and Locks Employee Accounts
September 2, 2024
A Major Data Breach Impacts the Retail Giant DICK'S Sporting Goods in a Cyberattack
North Korean Hackers Exploit Chrome Zero-Day to Deploy Rootkit
September 2, 2024
North Korean hackers have successfully exploited a recently patched Google Chrome zero-day vulnerability (CVE-2024-7971) to deploy the FudModule rootkit.
Chinese Threat Actors Exploit TrueConf Zero-Day to Breach Asian Governments
Docker Engine Vulnerability CVE-2026-34040 Allows Attackers to Bypass Authorization
Iranian Hackers Target U.S. Critical Infrastructure via Rockwell PLCs
Russia-linked APT28 Exploits Routers in Wide-ranging Espionage Campaign
Anthropic’s Claude Mythos Could Protect Critical Software — or Power the Next Wave of Cyberattacks
Trent AI Emerges From Stealth With $13 Million in Funding
Android Security Update Patches Severe StrongBox and Framework Vulnerabilities
Automated Pentesting Tools Fall Short Past the “PoC Cliff”
Critical Flowise Vulnerability Puts Systems at Risk of Code Execution
Exchange Online Mailbox Access Issues Impact Outlook Users
Shadow AI and Zero-Click Exploits Are Reshaping Mobile Security Threats
Third-Party Vendors Are the New Breach Vector Organizations Should Fear
Critical ShareFile Flaws Open the Door to Unauthenticated RCE
Strapi CMS Plugins Face Exploitation by Malicious npm Packages
Bogus Traffic Violation Text Scam Targeting Americans
Qilin Ransomware Group Targets German Political Party Die Linke
Analysis Reveals .cmd Malware Escalating Privileges and Bypassing Antivirus
Fortinet Acts Quickly on Zero-Day Vulnerability Impacting FortiClient EMS Users
North Korean Cyber Operatives Drain $285 Million from Drift Exchange
Axios HTTP Client Developer Targeted in North Korean Social Engineering Campaign