CyberVolk, a pro-Russian hacktivist crew, is back after months of silence with a new ransomware service. There’s some bad news and some good news here. First, the bad news: the CyberVolk 2.x (aka...
The question facing security and technology leaders is no longer whether adversaries will deploy AI agents against their environment. Now, those leaders must ask whether their trust architecture,...
China’s heavyweight jet-powered Jiutian drone, said to have a maximum takeoff weight of around 17.6 tons (16 metric tons), has flown. A key mission for the design is expected to be acting as a...
Ashen Lepus remained persistently active throughout the Israel-Hamas conflict, distinguishing it from other affiliated groups whose activities decreased over the same period. Ashen Lepus continued...
Lithuania’s government is investing heavily in defense technology and surveillance systems via a strategic security plan to thwart what it views as escalating hybrid attacks involving balloons and...
Plus: Travelers to the US may have to hand over five years of social media history, South Korean CEOs are resigning due to cyberattacks, and more.
he French Interior Ministry’s e-mail servers were the target of a cyber attack this week, Interior Minister Laurent Nunez said on Friday, adding an investigation was under way. “There has...
Pierce County Library System (PCLS) is notifying over 340,000 people that their personal information was compromised in a data breach. Between April 15 and April 21, 2025, threat actors accessed...
Apple on Friday released security updates for iOS, iPadOS, macOS, tvOS, watchOS, visionOS, and its Safari web browser to address two security flaws that it said have been exploited in the wild,...
As part of my role at DXC Technology, I oversee our security business, and I frequently deal with attacks on our customers. But on Saturday, July 4, 2020, as I was stepping out of the car to start...
Lorenzo Franceschi-Bicchierai reports: Apple and Google have released several software updates to protect against a hacking campaign targeting an unknown number of their users. On Wednesday,...
Cybersecurity researchers are calling attention to a new campaign that's leveraging GitHub-hosted Python repositories to distribute a previously undocumented JavaScript-based Remote Access Trojan...
David Gilbert reports: When a privacy specialist at the legal response operations center of Charter Communications received an emergency data request via email on September 4 from Officer Jason...
Exploit hasn't been picked up by any malware detection engines, CEO tells The Reg A Microsoft zero-day vulnerability that allows an unprivileged user to crash the Windows Remote Access Connection...
I have no context for this video—it’s from Reddit—but one of the commenters adds some context: Hey everyone, squid biologist here! Wanted to add some stuff you might find interesting. With so many...
There are various reasons entities may not want to disclose a data breach or respond to journalists’ inquiries. But when entities do not disclose a breach or deny it, and they do not respond to...
Cybersecurity researchers have documented four new phishing kits named BlackForce, GhostFrame, InboxPrime AI, and Spiderman that are capable of facilitating credential theft at scale. BlackForce,...
And the earlier React2Shell patch is vulnerable If you're running React Server Components, you just can't catch a break. In addition to already-reported flaws, newly discovered bugs allow...
Seeking to end a "patchwork" of state-level AI regulation, the president spelled out his administration's approach to letting companies "be free to innovate."
Want to know the latest from Google Cloud? Find it here in one handy location. Check back regularly for our newest updates, announcements, resources, events, learning opportunities, and more. Tip:...
The browser has become the main interface to GenAI for most enterprises: from web-based LLMs and copilots, to GenAI‑powered extensions and agentic browsers like ChatGPT Atlas. Employees are...
Behind the polished exterior of many modern buildings sit outdated systems with vulnerabilities waiting to be found
The React team has released fixes for two new types of flaws in React Server Components (RSC) that, if successfully exploited, could result in denial-of-service (DoS) or source code exposure. The...
Despite overwhelming focus on the Department of Homeland Security’s handling of immigration enforcement, a Thursday hearing on worldwide threats targeting the U.S. did feature some insights into...
CISA has released updated Cross-Sector Cybersecurity Performance Goals (CPG 2.0) with measurable actions for critical infrastructure owners and operators to achieve a foundational level of...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has urged federal agencies to patch the recent React2Shell vulnerability by December 12, 2025, amid reports of widespread...
China and Russia are experimenting with stealth technologies aimed at making it harder for radar and telescopes to find their satellites, according to a senior Space Force official. “In years...
A fresh effort is mounting in Congress to require federal agents to obtain a warrant before searching a government surveillance database for information about U.S. citizens, as Congress again...
Authorities disrupt hacktivists and data thieves, malicious VS Code extensions target developers, and CyberVolk returns with a flawed RaaS.