Cyber Security
Say Goodbye to Manual Identity Processes and Hello to Scalable IAM Automation
The Role of a Cyber Security Specialist in Building Cyber Resilience and Modern Defense Strategies
The AI Cyber Threat: How to Secure your Systems in the Age of Artificial Intelligence
The Rising Tide of Cybersecurity Threats in Hospitality: How Hotels Can Stay Secure this Summer
Why External Attack Surface Management Belongs at the Core of Your Cybersecurity Strategy
64 Million T-Mobile Customer Records Allegedly Exposed in New Data Leak
How to Defend Your Organization Against Scattered Spider’s Service Desk Attacks
Ivanti Workspace Control Exposes SQL Credentials Through Hardcoded Key Flaws
The Exploding Threat of Cybercrime-as-a-Service (CaaS): How it’s Reshaping the Cybercrime Landscape
Quantum Hacking Is Coming: How to Prepare with Post-Quantum Security Today
Interlock Ransomware Suspected in Kettering Health System-Wide Outage
RVTools Supply Chain Attack Delivered Bumblebee Malware via Trojanized Installer
Chinese Hackers Exploiting SAP NetWeaver Servers via Zero-Day Vulnerability
iClicker Website Compromised in ClickFix Malware Attack Targeting Students and Faculty
The Truth About Identity Attacks: How to Protect Your Business and Data
CISA Warns of Ongoing Cyber Threats to U.S. Oil and Gas Infrastructure
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
The Rising Tide of Supply Chain Cybersecurity Risks in 2025
Fighting AI with AI: Using Artificial Intelligence to Strengthen Enterprise Cybersecurity
27 Million Records Allegedly Leaked from French Retailer Boulanger
13 Cybersecurity Assumptions That Are Getting You Hacked (And What to Do Instead)
Navigating the Complex Intersection of AI and Data Privacy
Cookie-Bite Attack Uses Chrome Extension to Steal Microsoft Session Tokens and Bypass MFA
Ad Fraud Operation ‘Scallywag’ Used WordPress Plugins to Generate 1.4 Billion Daily Ad Requests
FBI Warns of IC3 Impersonation Scam Targeting Victims of Online Fraud
Remote Desktop Protocol (RDP): A Double-Edged Sword for IT Teams
Google Faces £5 Billion UK Antitrust Lawsuit Over Search Advertising Practices
Skyward Specialty Insurance Data Breach Exposes Sensitive Information
Hacker Forum ‘Cracked’ Resurfaces Online After FBI Seizure in Global Cybercrime Operation
Wolters Kluwer Data Breach Claim Raises Alarms Across Fortune 500 Network
Rivers Casino Data Breach Follows Class-Action Lawsuits After Personal Information Compromised
News
Rivers Casino Data Breach Follows Class-Action Lawsuits After Personal Information Compromised
Rivers Casino Philadelphia data breach exposed sensitive customer information, leading to multiple class-action lawsuits. Learn about the extent of the breach and the legal actions ...
PowerSchool Hack Exposes Sensitive Data of Students and Teachers in K-12 Districts
News
PowerSchool Hack Exposes Sensitive Data of Students and Teachers in K-12 Districts
PowerSchool hack exposed student and teacher data from K-12 districts, including SSNs and PII, prompting investigations and credit monitoring services for those affected.
Hacked Chrome Extensions Expose 2.6 Million Users to Data Leaks
News
Hacked Chrome Extensions Expose 2.6 Million Users to Data Leaks
Over 36 Hacked Chrome extensions put 2.6 million users at risk of data leaks, exposing browsing data and credentials. Security researchers urge immediate removal of ...
Westend Dental Fined $350,000 for Covering Up Ransomware Attack Data Breach
News
Westend Dental Fined $350,000 for Covering Up Ransomware Attack Data Breach
Westend Dental LLC, a US dental chain, was fined $350,000 for lying about a 2020 ransomware attack that resulted in a major data breach. Their ...
Nuclei Vulnerability Allows Signature Bypass and Code Execution
Cybersecurity
Nuclei Vulnerability Allows Signature Bypass and Code Execution
Nuclei vulnerability (CVE-2024-43405) allows signature bypass and code execution due to inconsistencies in newline character handling between signature verification and YAML parsing. Update to version ...
Washington Sues T-Mobile Over Data Breach Impacting Millions
News
Washington Sues T-Mobile Over Data Breach Impacting Millions
Washington state sued T-Mobile for a massive data breach affecting millions, alleging negligence and inadequate customer notification. The T-Mobile data breach exposed sensitive personal information.
City Bank Data Breach: Client Financial Statements Sold on Underground Forums
News
City Bank Data Breach: Client Financial Statements Sold on Underground Forums
City Bank data breach resulted in client financial statements being sold on underground forums. The vulnerability, involving weak multi-factor authentication and improper session handling, was ...
PLAYFULGHOST Malware: Exploiting Phishing, SEO Poisoning, and Trojanized VPNs
News
PLAYFULGHOST Malware: Exploiting Phishing, SEO Poisoning, and Trojanized VPNs
PLAYFULGHOST malware uses phishing, SEO poisoning, and trojanized VPN apps to steal data, highlighting the need for robust cybersecurity practices.
Hacker 'natohub' Claims 42,000 Records in UN Civil Aviation Agency Data Breach
News
Hacker ‘natohub’ Claims 42,000 Records in UN Civil Aviation Agency Data Breach
A hacker claims a data breach at the ICAO, a UN agency, affecting 42,000 individuals. The ICAO is investigating.
This Week In Cybersecurity: 30th December to 03rd January
Cybersecurity
This Week In Cybersecurity: 30th December to 03rd January
This week in cybersecurity, major incidents include Volkswagen's breach of 800,000 vehicle data, Japan Airlines' DDoS disruptions, and Rhode Island's RIBridges data leak affecting 650,000 ...
Japan Mobile Carrier NTT Docomo Suffers Cyberattack Causing System Glitch and Service Disruptions
News
Japan Mobile Carrier NTT Docomo Suffers Cyberattack Causing System Glitch and Service Disruptions
Japan's largest mobile carrier, NTT Docomo, experienced a significant system glitch and service disruptions due to a cyberattack, impacting its website and "d payment" service. ...
Rutherford County Schools Data Breach: Student Data Compromised
News
Rutherford County Schools Data Breach: Student Data Compromised
The Rutherford County Schools data breach compromised student and employee data, including Social Security numbers. Experts urge parents to monitor credit reports and utilize FTC ...
US Treasury Hack: Escalating Cyber Warfare Between US and China
Cybersecurity
US Treasury Hack: Escalating Cyber Warfare Between US and China
The recent US Treasury cyberattack highlights the escalating threat landscape. Learn how enterprise businesses can bolster their defenses against sophisticated state-sponsored attacks like the US ...
Cyber Attacks Hit French Internet Sites: Multiple Cities Targeted in Pro-Russia Hack
News
Cyber Attacks Hit French Internet Sites: Multiple Cities Targeted in Pro-Russia Hack
French cities faced widespread website outages due to cyberattacks claimed by a pro-Russian group, highlighting vulnerabilities to politically motivated digital disruptions.
This Week In Cybersecurity: 23rd December to 27th December
News
This Week In Cybersecurity: 23rd December to 27th December
This Week In Cybersecurity covers the latest incidents and trends from December 23rd to December 27th. Highlights include the Play ransomware gang's breach of Krispy ...
Rhode Island's RIBridges Hack: Data Leaked on Dark Web on New Year's Day
News
Rhode Island’s RIBridges Hack: Data Leaked on Dark Web on New Year’s Day
The RIBridges data breach exposes the sensitive information of approximately 650,000 Rhode Islanders. The state is working to mitigate the damage and provide support to ...
Volkswagen Data Leak Exposes Location Data of 800,000 Electric Vehicles
News
Volkswagen Data Leak Exposes Location Data of 800,000 Electric Vehicles
Volkswagen data leak exposed the location data of 800,000 electric vehicles, along with personal details for some drivers, highlighting serious security flaws.
China Denies State-Sponsored Cyberattack on US Treasury
News
China Denies State-Sponsored Cyberattack on US Treasury
China denies US accusations of a state-sponsored cyberattack on US Treasury, calling the claims "groundless," while the US points to a compromised third-party service provider.
Pro-Russian Hackers NoName057 Launch Coordinated Cyberattacks Against Italy
News
Pro-Russian Hackers NoName057 Launch Coordinated Cyberattacks Against Italy
: Pro-Russian hackers NoName057 targeted Italian websites, including Milan airports, in a series of DDoS attacks.
Massive Healthcare Breaches Prompt Overhaul of US Cybersecurity Rules
Cybersecurity
Massive Healthcare Breaches Prompt Overhaul of US Cybersecurity Rules
The US is overhauling its cybersecurity rules following a surge in healthcare breaches. New regulations will mandate encryption, multi-factor authentication, and network segmentation to protect ...

TOP CYBERSECURITY HEADLINES

SECURITYWEEK INDUSTRY EXPERTS

Trending

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Detection Tools
  • Uncategorized
Fall River Public Schools Responds to Cybersecurity Breach
Fall River Public Schools confirms a cybersecurity breach, working with experts to investigate unauthorized network access and ensure data protection.
Kellogg Data Breached, Clop Ransomware Exploits Cleo Zero-Day Vulnerabilities
WK Kellogg confirms a data breach exposing employee names and social security numbers, linked to the Clop ransomware gang's exploitation of Cleo software vulnerabilities.
Superannuation Hack Exposes $4.2 Trillion Sector’s Cybersecurity Vulnerabilities
A major superannuation hack exposed critical cybersecurity flaws, impacting major Australian funds and highlighting the urgent need for stronger security measures within the $4.2 trillion ...
Singapore Banks Suffer Ransomware Attack: DBS and Bank of China Affected
Singapore's DBS and Bank of China suffered a data breach due to a ransomware attack on their printing services provider, impacting thousands of customers. Funds ...
Vice Society Ransomware: The Anti K-12 RaaS Syndicate
Vice Society, a prolific RaaS group, preys on schools and other institutions, deploying readily available ransomware and threatening data leaks unless ransoms are paid. Their ...
Texas State Bar Data Breach Exposes Sensitive Attorney Information
Texas State Bar's data breach exposed sensitive attorney information, including SSNs, financial details, and legal case documents. Ransomware group INC claimed responsibility.
Everest Ransomware’s Dark Web Leak Site Defaced and Taken Offline
Everest ransomware's dark web leak site was defaced, disrupting their double-extortion scheme. This highlights the vulnerability of even sophisticated cybercriminal operations and the importance of ...
EncryptHub Has a Double Life of a Cybercriminal and Bug Bounty Hunter
Threat actor EncryptHub, responsible for compromising 618 organizations, secretly reported two Windows zero-day vulnerabilities to Microsoft, revealing a complex figure operating in both cybercrime and ...
Europcar Data Breach Affects 200,000 Customers
Europcar's data breach potentially affects up to 200,000 customers after threat actors accessed GitLab repositories. The company confirms the breach but disputes the full extent ...
WinRAR Vulnerability Bypasses Windows Mark of the Web Security
WinRAR vulnerability (CVE-2025-31334) bypasses Windows Mark of the Web security, enabling silent malicious code execution. Update to version 7.11 immediately.
Port of Seattle Ransomware Attack Impacts 90,000 Individuals
A ransomware attack on the Port of Seattle exposed the personal data of 90,000 individuals. The Rhysida ransomware group was responsible, and the Port refused ...
E-ZPass Phishing Scam Targets E-ZPass
A massive wave of phishing texts impersonating E-ZPass is stealing personal and financial data. Scammers use urgency and encrypted messaging to bypass security measures.
CISA Warns of Fast Flux DNS Evasion Used by Cybercrime Gangs
CISA warns of Fast Flux DNS evasion, a technique used by cybercrime gangs to mask malicious activity by rapidly changing DNS records, making detection and ...
COBIT 2019 vs. COBIT 5: What’s New and Why It Matters
The IT world is constantly changing, and so are the frameworks that govern it. This blog post delves into the significant differences between COBIT 5 ...
Texas State Bar Data Breach: INC Ransomware Gang Claims Responsibility
The Texas State Bar suffered a data breach between January 28 and February 9, 2025, with the INC ransomware gang claiming responsibility and leaking stolen ...
GitHub Supply Chain Attack Traced to Leaked SpotBugs Token
A devastating GitHub supply chain attack, targeting Coinbase, stemmed from a leaked SpotBugs token, exposing secrets in 218 repositories and highlighting critical vulnerabilities in open-source ...
Oracle Cloud Breach Confirmed, Data Theft Impacts Legacy Systems
Oracle confirms a data breach impacting its legacy Oracle Cloud Classic system, resulting in the theft of client credentials. Investigations are underway, but the company's ...
Hunters International Shifts to Data Extortion and Rebrands as World Leaks
Hunters International, a notorious ransomware operation, has rebranded as World Leaks, shifting its focus to data extortion.
$500,000 Lost in Australian Superannuation Fund Data Breach
Major Australian superannuation funds experienced a data breach, resulting in $500,000 in losses and impacting thousands of members via a credential stuffing attack.
KillSec: Hacktivists Turned RaaS Syndicate
KillSec, a Russia-linked RaaS group, targets healthcare and finance, leveraging OSINT and affiliates for extortion, showing a preference for Asian victims over Western ones.
Axonius Buys Cynerio for $100M+: Closing Healthcare’s Biggest Cybersecurity Blind Spot
Hackers Exploit SAP NetWeaver Flaw to Deploy Advanced Auto-Color Malware on U.S. Chemical Firm
Aeroflot Flights Canceled After Hacktivist Cyberattack Cripples Airline Systems
Scattered Spider Ransomware Group Ramps Up Sophisticated Attacks Targeting Enterprises Globally
Cheap McDonald’s Deal Turns Into Subscription Scam: Over 10,000 Romanians Targeted via Facebook and Instagram Ads
Orange Discloses Cyberattack, Service Disruptions in France Following Breach
Critical Lenovo Firmware Flaws Expose Millions to Persistent UEFI Attacks
Promptfoo Secures $18.4M to Combat AI Security Threats in Generative AI
1.1 Million Private Messages Leaked: Inside the Tea App Privacy Disaster
Job Scams, Corporate Espionage, and Digital Deception: Inside the Deepfake Crisis
Microsoft Exposes Major macOS Flaws in Transparency, Consent, and Control
Aeroflot in Chaos: How Hackers Crippled Russia’s Flagship Airline
Lynx Ransomware: INC Ransomware Reincarnated
How to Backup and Restore the Windows Registry
Google Patches Gemini CLI Vulnerability That Enabled Silent Code Execution and Data Theft
NASCAR Confirms Data Breach Tied to Medusa Ransomware Gang, SSNs Exposed
Tea App Data Breach Deepens as 1.1 Million Private Messages Are Exposed
Hackers Claim Deep Access to Systems, Threaten to Leak Passenger Data
CISA Warns of Ongoing Exploits Targeting PaperCut RCE Vulnerability, Urges Immediate Patching
Exploit Published for Actively Exploited Cisco ISE Vulnerability Leading to Root Access