Cyber Security
Cybersecurity
Chinese Cyber Espionage Group Exploits Dell Security Vulnerability
Chinese state-backed hackers have been identified exploiting a Dell security flaw in a series of zero-day attacks since mid-2024. These attacks underline concerns regarding the ...
Cybersecurity
Cybercriminals Create Impersonated Oura MCP Server to Deploy StealC Info-Stealer
Cybercriminals replicated a legitimate Oura MCP server in a deceptive campaign to distribute StealC malware. STAR Labs discovered the SmartLoader operation, presenting crucial cybersecurity insights.
Cybersecurity
VulnCheck Secures $25 Million to Enhance Vulnerability Intelligence
VulnCheck, a company specializing in vulnerability intelligence, has successfully raised $25 million in a Series B funding round. The investment, led by Sorenson Capital, demonstrates ...
Application Security
Notepad++ Bolsters Security With New Double-lock Update System
After a recent supply-chain attack, Notepad++ has revamped its update mechanism with a double-lock design. This new approach is intended to tighten security and prevent ...
Cybersecurity
AI Assistants as Covert C2 Tools: Implications for Enterprise Security
Cybersecurity experts have found methods to transform AI assistants with web capabilities into covert command-and-control (C2) tools. Such exploits could let attackers mask their activities ...
Cybersecurity
Unveiling the Extent of Leaked API Keys in Front-End Applications
Intruder's comprehensive scan of JavaScript bundles across 5 million applications reveals a staggering number of exposed API keys, uncovering a critical security threat.
Application Security
Microsoft Teams Service Outage Frustrates Users Worldwide
Microsoft Teams has been experiencing an ongoing outage worldwide that has led to significant delays and access issues. Users are frustrated by these disruptions, with ...
News
Polish Authorities Detain Suspected Phobos Ransomware Operative
Polish authorities have arrested a 47-year-old man suspected of participating in cybercrimes associated with the Phobos ransomware. During the operation, officers seized devices containing evidence ...
Cybersecurity
Millions of Eurail User Records at Stake as Hackers Threaten Sale
Hackers claim to have stolen millions of Eurail user records and are reportedly offering these for sale. Eurail is currently trying to gauge the breach's ...
Cybersecurity
Rise in API Exploitation Driven by Weak Security and Enhanced AI Capabilities
New research details the growing misuse of APIs by attackers leveraging machine speed and AI capabilities. Enhanced API attacks increase exposure and amplify impact, indicating ...
Cybersecurity
Allegations of Data Violations by Lenovo: US Law Firm Raises Concerns
Lenovo is under scrutiny as a US law firm alleges the company breached DOJ guidelines concerning data transfers to foreign adversaries, specifically China. Lenovo has ...
Cybersecurity
New Android Malware Identified in Device Firmware Raising Alarms
Android malware known as Keenadu has been discovered within the firmware of various brands, enabling it to breach installed apps and seize control of affected ...
Cybersecurity
Italian University Struggles With Disruption After Cyberattack
Rome’s La Sapienza University, a key academic institution in Italy, has been grappling with severe disruptions following a significant cyberattack on February 2. This attack ...
News
The Rise of TGR-STA-1030: The Global ‘Shadow Campaigns’ Targeting Government Infrastructure
A new cyberespionage group, TGR-STA-1030/UNC6619, known for its "Shadow Campaigns," has targeted government infrastructure in 155 countries, highlighting a new global threat landscape.
Cybersecurity
DKnife Toolkit: A Persistent Threat to Network Security
DKnife is a powerful Linux-based toolkit used by cybercriminals to hijack router traffic, allowing them to monitor and manipulate data. Discovered by Cisco Talos, it ...
Cybersecurity
Lema AI Secures $24 Million to Bolster Supply Chain Security
Lema AI exits stealth mode, securing $24M in funding across Series A and seed rounds, aimed at advancing its supply chain security platform.
Cybersecurity
Warlock Ransomware Gang Breach at SmarterTools: Email System Compromised
The Warlock ransomware gang has infiltrated SmarterTools’ network by breaching the company's email system but has not disrupted critical business functions or accessed account data. ...
News
Ransomware Gangs Reconsider Strategies as Data Theft Returns Diminish
With diminishing returns from data theft alone, ransomware gangs are exploring the return to data encryption for extortion. Altered tactics reflect evolving criminal strategies to ...
Cybersecurity
Outtake’s $40 Million Infusion to Battle AI-Powered Cyber Threats
The cybersecurity startup Outtake secures $40 million in Series B funding, bringing its total funding to $60 million. This financing round aims to enhance Outtake's ...
Cybersecurity
Exploitation of SolarWinds Web Help Desk Instances Raises Serious Security Concerns
Microsoft defender team recently uncovered a sophisticated multi-stage intrusion exploiting SolarWinds Web Help Desk instances, endangering network security by leveraging exposed web help interfaces for ...
CVE Vulnerability Alerts
Cisco SD-WAN Manager Hit by 7th Zero-Day of 2026, No Patch
TOP CYBERSECURITY HEADLINES
Application Security
Hola Browser for Windows Bundled Monero Miner in Supply Chain Hit
This Week’s Security Spotlight
CVE Vulnerability Alerts
Cisco SD-WAN Manager Hit by 7th Zero-Day of 2026, No Patch
Cybersecurity
CISA to Issue Binding AI Security Directive This Week
Application Security
Fake Claude Code Installers on Google Sites Steal AI API Keys
Trending
Daily Briefing Newsletter
Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.
Featured Videos
Podcasts
Cyber Security News
- All
- Application Security
- Blog
- CVE Vulnerability Alerts
- Cybersecurity
- Cybersecurity Newsletter
- Data Security
- Endpoint Security
- Identity and Access Management
- Information Security
- Network Security
- News
- Phishing
- Podcasts
- Product Reviews
- Ransomware
- Ransomware Victims
- Resources
- Security Spotlight
- Sponsored
- Threat Actors
- Threat Actors
- Threat Detection Tools
Notepad++ Bolsters Security With New Double-lock Update System
After a recent supply-chain attack, Notepad++ has revamped its update mechanism with a double-lock design. This new approach is intended to tighten security and prevent ...
AI Assistants as Covert C2 Tools: Implications for Enterprise Security
Cybersecurity experts have found methods to transform AI assistants with web capabilities into covert command-and-control (C2) tools. Such exploits could let attackers mask their activities ...
Unveiling the Extent of Leaked API Keys in Front-End Applications
Intruder's comprehensive scan of JavaScript bundles across 5 million applications reveals a staggering number of exposed API keys, uncovering a critical security threat.
Microsoft Teams Service Outage Frustrates Users Worldwide
Microsoft Teams has been experiencing an ongoing outage worldwide that has led to significant delays and access issues. Users are frustrated by these disruptions, with ...
Polish Authorities Detain Suspected Phobos Ransomware Operative
Polish authorities have arrested a 47-year-old man suspected of participating in cybercrimes associated with the Phobos ransomware. During the operation, officers seized devices containing evidence ...
Millions of Eurail User Records at Stake as Hackers Threaten Sale
Hackers claim to have stolen millions of Eurail user records and are reportedly offering these for sale. Eurail is currently trying to gauge the breach's ...
Rise in API Exploitation Driven by Weak Security and Enhanced AI Capabilities
New research details the growing misuse of APIs by attackers leveraging machine speed and AI capabilities. Enhanced API attacks increase exposure and amplify impact, indicating ...
Allegations of Data Violations by Lenovo: US Law Firm Raises Concerns
Lenovo is under scrutiny as a US law firm alleges the company breached DOJ guidelines concerning data transfers to foreign adversaries, specifically China. Lenovo has ...
New Android Malware Identified in Device Firmware Raising Alarms
Android malware known as Keenadu has been discovered within the firmware of various brands, enabling it to breach installed apps and seize control of affected ...
Italian University Struggles With Disruption After Cyberattack
Rome’s La Sapienza University, a key academic institution in Italy, has been grappling with severe disruptions following a significant cyberattack on February 2. This attack ...
The Rise of TGR-STA-1030: The Global ‘Shadow Campaigns’ Targeting Government Infrastructure
A new cyberespionage group, TGR-STA-1030/UNC6619, known for its "Shadow Campaigns," has targeted government infrastructure in 155 countries, highlighting a new global threat landscape.
DKnife Toolkit: A Persistent Threat to Network Security
DKnife is a powerful Linux-based toolkit used by cybercriminals to hijack router traffic, allowing them to monitor and manipulate data. Discovered by Cisco Talos, it ...
Lema AI Secures $24 Million to Bolster Supply Chain Security
Lema AI exits stealth mode, securing $24M in funding across Series A and seed rounds, aimed at advancing its supply chain security platform.
Warlock Ransomware Gang Breach at SmarterTools: Email System Compromised
The Warlock ransomware gang has infiltrated SmarterTools’ network by breaching the company's email system but has not disrupted critical business functions or accessed account data. ...
Ransomware Gangs Reconsider Strategies as Data Theft Returns Diminish
With diminishing returns from data theft alone, ransomware gangs are exploring the return to data encryption for extortion. Altered tactics reflect evolving criminal strategies to ...
Outtake’s $40 Million Infusion to Battle AI-Powered Cyber Threats
The cybersecurity startup Outtake secures $40 million in Series B funding, bringing its total funding to $60 million. This financing round aims to enhance Outtake's ...
Exploitation of SolarWinds Web Help Desk Instances Raises Serious Security Concerns
Microsoft defender team recently uncovered a sophisticated multi-stage intrusion exploiting SolarWinds Web Help Desk instances, endangering network security by leveraging exposed web help interfaces for ...
7-Zip Targeted by Malicious Website: Users Turned Into Unwitting Proxy Nodes
Cybercriminals have crafted a counterfeit 7-Zip website, installing a trojanized version of the archiving tool that hijacks user computers as residential proxy nodes. This tactic ...
Data Exposure Risks with Zero-Click Prompt Injection in AI Chat Apps
Zero-click prompt injection can expose sensitive data when AI agents interact with messaging apps. Attackers manipulate chat prompts to generate data-leaking URLs, leading to inadvertent ...
Vega Expands with $120 Million Series B Funding
Security analytics platform Vega has raised $120 million in a Series B funding round, bringing its total fundraising to $185 million. This latest investment highlights ...