Cyber Security
China Bans Claude Code After CNVDB Backdoor Advisory
Socket Finds 17 Malicious Payment SDKs Stealing AWS Keys via npm, PyPI
HalluSquatting Turns AI Package Hallucinations Into Botnet Traps
Chrome 150 Patches Two Critical Use-After-Free Flaws in Ozone, Views
CMU Research: Copilot’s Safety Refusals Fail 100% in Workflow Mode
Friendly Fire PoC Turns Claude Code and Codex Into Malware Launchers
DigitalMint Employee Sentenced for BlackCat Ransomware Conspiracy
Ill Bloom Flaw Drained $3.1M by Breaking Wallet Seed Randomness
Threat Actors Use Aged GitHub Accounts to Map Corporate Orgs
Microsoft Discloses GigaWiper: Disk Wiper Hidden Behind Fake Ransom
GodDamn Ransomware Uses PoisonX Driver to Kill EDR Before Encrypting
Injective Labs’ npm SDK Poisoned to Steal Crypto Wallet Credentials
Helix Group Uses Vishing and Device Code Flow to Steal SharePoint Data
Forg365 PhaaS Combines AiTM and Device Code Flow to Target M365
200 GitHub Repos Used as Dead Drop C2 Network for Windows Malware
Palo Alto Networks Patches 13 PAN-OS Flaws Including Auth Bypass
NHS Forth Valley Employee Emails Maternity Data to Personal Account
EU Parliament Falls Short of Votes to Block Chat Control Return
OpenMandriva Linux Contributor Attempted Code Sabotage After Dispute
Seven FatFs Flaws Threaten Cameras, Drones, and Crypto Wallets
Microsoft Warns AI Tools Will Accelerate Windows Patch Volumes
IPNetwork Monitor Adds Native PostgreSQL Monitoring and One-Click Zabbix Import to Its Self-Hosted Platform
CISA Adds ColdFusion, Langflow, Two Joomla CVEs to KEV
Ubiquiti Patches Seven Critical UniFi OS Flaws, 100K at Risk
Accenture Confirms Breach After Hacker Lists 35 GB for Sale
Cisco Talos Exposes UAT-7810 LONGLEASH Backdoor on Ruckus Routers
UK NCSC Publishes Cyber Shield Blueprint for AI Defense
BonkDAO Loses $20M After Attacker Buys Quorum with ~$4M
Eight Predatorgate Victims Sue Intellexa for €8 Million
CVE-2026-53359 Januscape: 16-Year KVM Flaw Enables VM Escape

Sorry, we couldn't find any posts. Please try a different search.

CVE Vulnerability Alerts
Microsoft Patches RoguePlanet Defender Zero-Day CVE-2026-50656
Application Security
Socket Finds 17 Malicious Payment SDKs Stealing AWS Keys via npm, PyPI

TOP CYBERSECURITY HEADLINES

This Week’s Security Spotlight

Trending

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Sorry, we couldn't find any posts. Please try a different search.

  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
APT28 Hacking Collective Targets Ukraine with MASEPIE Malware – CERT-UA Issues Security Alert
The Computer Emergency Response Team (CERT) of Ukraine has issued a warning regarding a recent phishing campaign. The threat actor behind this attack is the ...
Lockbit Ransomware Disrupts Healthcare Systems at German KHO Network of Hospitals
Katholische Hospitalvereinigung Ostwestfalen (KHO), a hospital network in Germany, has confirmed that the recent service disruptions experienced at three of its hospitals were a result ...
First American Cyber Attack Disrupts Closings: No New Updates from the American Title Insurance Firm
The nation’s second-largest title insurer, and its subsidiaries are currently experiencing an ongoing system outage following the First American cyber attack on December 20th. This ...
Liberty Hospital Cyber Attack Forces Kansas City to Transfer Patients and Reschedule Appointments
A hospital in the vicinity of Kansas City, Missouri, is facing challenges in delivering patient care due to a cyberattack that has affected its computer ...
Yakult Cyber Incident Leads to 95 GB Data Leak – DragonForce Claims the Cyber Attack
Yakult Australia, the manufacturer of a popular probiotic milk drink, recently faced a cyber incident. The Yakult Cyber Incident has impacted both their IT systems ...
Barracuda Zero Day Vulnerability Exploited by UNC4841 – Barracuda Remotely Patches Email Security Gateway Appliances
According to Barracuda, a leading network and email security firm, they have successfully applied remote patches to all active Barracuda Email Security Gateway (ESG) appliances ...
Integris Health Data Breached: Patients Receive Extortion Emails, Data of 2 Million Compromised
Integris Health, Oklahoma’s largest not-for-profit health network, has recently experienced a cyberattack resulting in the theft of patient data. The Integris Health data breach led ...
Mr. Cooper Data Breach Affects 14.7 Million – Mortgage Firm Shuts Down IT Systems
Mr. Cooper Data Breach has sent shockwaves amongst the cybersecurity community as the mortgage lending firm was forced to shut down its IT systems to ...
GTA 5 Source Code Leaked a Year After GTA 6 Leaks in Rockstar Hack
Recent reports have surfaced the internet that on Christmas Eve, the source code for GTA 5 source code leaked on GTA leak channel on the ...
Synology Security Advisory SA-22:15 GLPI Disclosed Multiple Remote Access Vulnerabilities
Synology Security Advisor SA-22:15 revealed multiple vulnerabilities that allow remote access to sensitive information, add web scripts, HTML, or inject SQL command(s) via the vulnerable ...
Ace Hardware Cyber Attack Disrupts Operations and Cripples IT Systems
Ace Hardware, the American hardware retailers’ cooperative, has experienced significant disruptions to its operations following a cyber attack in 2023. Ace Hardware Cyber Attack 2023 ...
First American Financial Hacked: Takes IT Systems Offline to Contain the Breach
First American Financial Corporation, the second-largest and one of the very first American title insurance companies in the US, has taken certain systems offline today ...
How to Conduct a Cybersecurity Risk Assessment: Step-by-Step Guide
In today’s digital landscape, cybersecurity is a top concern for organizations of all sizes. As cyber threats continue to evolve and become more sophisticated, businesses ...
Enhance Your Email Security: 15 Best Email Security Practices for 2024
Securing emails is crucial for enterprises due to various compelling reasons, which is why they need robust email security. Given that emails serve as a ...
OilRig APT Uses Downloader Malware for Cyberespionage
Iranian state-sponsored threat actor OilRig, also known as APT34, continued its cyber espionage endeavors throughout 2022, deploying three distinctive downloader malware—ODAgent, OilCheck, and OilBooster. Slovak ...
Spear Phishing vs Phishing: How Do Spear Phishing Attacks Differ from Standard Phishing Attacks?
In today’s digital landscape, where communication is predominantly virtual, the threat of phishing attacks—especially spear phishing—has escalated. Phishing refers to the deceptive practice of sending ...
Spider-Man Developer Insomniac Games Hit by Rhysida Ransomware
Since its emergence in May 2023, Rhysida ransomware has gained notoriety as an emerging threat actor in the cybercrime landscape. The latest target of this ...
Toyota Cyberattack: Medusa Ransomware Strikes Toyota, Customer Data Compromised
Toyota Financial Services (TFS), a subsidiary of Toyota Motor Corporation, faces the aftermath of a cyberattack, courtesy of the Medusa ransomware group. The breach, detected ...
Canadian Government’s Data Security Compromised Affecting its Contractors
In a recent cybersecurity incident, the Canadian government has reported that two of its contractors, Brookfield Global Relocation Services (BGRS) and SIRVA Worldwide Relocation & ...
Microsoft Exchange Zero-Day Exploit: Experts Say Mitigation isn’t Enough
Microsoft has shared mitigations for two new Microsoft Exchange zero-day elevation of privelege vulnerability, tracked as CVE-2022-41040, and remote execution vulnerability (CVE-2022-41082). However, security researchers ...