Introduction Mandiant has identified an expansion in threat activity that uses tactics, techniques, and procedures (TTPs) consistent with prior ShinyHunters-branded extortion operations. These...
Introduction Mandiant is tracking a significant expansion and escalation in the operations of threat clusters associated with ShinyHunters-branded extortion. As detailed in our companion report,...
Bumble and Match said they each recently responded to network intrusions. The group ShinyHunters claimed to have stolen data from both.
AI assistants are now embedded in our daily lives—used most often for instrumental tasks like writing code, but increasingly in personal domains: navigating relationships, processing emotions, or...
The Department of Energy’s Office of Cybersecurity, Energy Security, and Emergency Response brought utilities, industry experts, and government defenders together on Plum Island, New York, for the...
In October 2025, at a large ceremony organized in Hanoi, 72 states signed the U.N. Cybercrime Convention (UNCC, or Hanoi Convention), the first U.N.-wide convention to combat cybercrime and...
Two Critical vulnerabilities in Ivanti’s popular mobile device management solution have been exploited in the wild in limited attacksBackgroundOn January 29, Ivanti released a security advisory to...
Two Critical vulnerabilities in Ivanti’s popular mobile device management solution have been exploited in the wild in limited attacksKey takeaways:Patch Ivanti EPMM immediately. Both CVE-2026-1281...
NERC’s 2025 Long-Term Reliability Assessment (LTRA) and infographic spotlight intensifying resource adequacy risks throughout the North American bulk power system (BPS) over the next 10 years....
President Donald Trump’s choice to lead the National Security Agency on Thursday repeatedly defended a mass foreign surveillance power that is weeks away from expiring without congressional...
A former Google engineer accused of stealing thousands of the company's confidential documents to build a startup in China has been convicted in the U.S., the Department of Justice (DoJ) announced...
A look back at the cloud security investigations and vulnerabilities that defined the year, from AI breakthroughs to supply chain shifts.
SmarterTools has addressed two more security flaws in SmarterMail email software, including one critical security flaw that could result in arbitrary code execution. The vulnerability, tracked as...
As January 2026 comes to a close, The Cyber Express takes a comprehensive look at the events defining the global cybersecurity landscape. Over the past week, organizations worldwide faced...
CERT Polska presents a report on the analysis of an incident in the energy sector that occurred on 29 December 2025. The attacks were destructive in nature and targeted wind and photovoltaic...
ESET researchers present technical details on a recent data destruction incident affecting a company in Poland’s energy sector
Ivanti has rolled out security updates to address two security flaws impacting Ivanti Endpoint Manager Mobile (EPMM) that have been exploited in zero-day attacks, one of which has been added by...
Two code injection vulnerabilities allowed unauthenticated attackers to execute arbitrary code and access sensitive device information across compromised networks. Ivanti released emergency...
Cyble Research & Intelligence Labs (CRIL) has uncovered a post-exploitation Linux framework called ShadowHS, designed for stealthy, in-memory operations. Unlike traditional malware, ShadowHS...
A data breach involving Match.com was reported on January 28, 2026. Learn about the incident details, impact on customers, and recommended security measures.
Executive Summary Cyble Research & Intelligence Labs (CRIL) has identified a Linux intrusion chain leveraging a highly obfuscated, fileless loader that deploys a weaponized variant of hackshell...
Multiple vulnerabilities have been discovered in Ivanti Endpoint Manager Mobile which could allow for remote code execution. Ivanti Endpoint Manager Mobile is a mobile management software engine...
BellSoft survey finds 48% prefer pre‑hardened images over managing vulnerabilities themselves Java developers still struggle to secure containers, with nearly half (48 percent) saying they'd...
A new joint investigation by SentinelOne SentinelLABS, and Censys has revealed that the open-source artificial intelligence (AI) deployment has created a vast "unmanaged, publicly accessible layer...
In the first part of this series, I detailed my journey into macOS security research, which led to the discovery of a type confusion vulnerability (CVE-2024-54529) and a double-free vulnerability...
The call is coming from inside the house opinion Maybe everything is all about timing, like the time (this week) America's lead cyber-defense agency sounded the alarm on insider threats after it...
Russia's current isolation from the Olympics may lead to increased cyberthreats targeting the 2026 Winter Games. We discuss the potential threat picture. The post Understanding the Russian...
The internet domain registration system is a major weakness that malicious hackers can exploit, but is often being overlooked, a senior Secret Service official said Thursday. “It is staggering to...
The new feature will not prevent location sharing with emergency responders and does not limit the location data users choose to share with apps, the company said.
An overview of coordinated influence operation campaigns terminated on our platforms in Q4 2025.