A critical security flaw has been disclosed in Grist‑Core, an open-source, self-hosted version of the Grist relational spreadsheet-database, that could result in remote code execution. The...
Reports say Salt Typhoon attackers accessed handsets of senior govt folk Chinese state-linked hackers are accused of spending years inside the phones of senior Downing Street officials, exposing...
The U.S. Department of Energy on Saturday and Sunday issued a series of emergency orders intended to help grid operators in New England, Texas and the Mid-Atlantic meet higher anticipated...
Cybersecurity researchers have discovered a JScript-based command-and-control (C2) framework called PeckBirdy that has been put to use by China-aligned APT actors since 2023 to target multiple...
Euralarm has released a new guidance document on precautionary measures for protecting installations and facilities, providing practical direction to strengthen the physical protection and...
The North Korean state-sponsored Lazarus hacking group has launched a sophisticated cyberespionage campaign targeting European defense contractors involved in uncrewed aerial vehicle (UAV)...
Against a steady drumbeat of ransomware attacks, data breaches, and sophisticated intrusions, President Donald Trump’s administration is preparing to release a new national cybersecurity strategy...
Texas is tightening its cybersecurity defenses by expanding the list of technologies that state employees are barred from using on government devices, a move aimed at preventing foreign actors...
Reviewing Wiz’s approach to forensics in the cloud era, and announcing the public preview of AI-powered, context-aware forensics capabilities
Budding IT insiders can be corrupted into giving up protected health information, say university researchers who also found a correlation between an interest in white hat hacking and a propensity...
A new risk assessment has found that xAI’s chatbot Grok has inadequate identification of users under 18, weak safety guardrails and frequently generates sexual, violent and inappropriate material....
Alert fatigue is fast becoming one of the most pressing challenges to operational resilience, new research suggests, and it’s harming workforce morale. According to Splunk’s State of Observability...
Introduction The Google Threat Intelligence Group (GTIG) has identified widespread, active exploitation of the critical vulnerability CVE-2025-8088 in WinRAR, a popular file archiver tool for...
We ported a complete Matrix homeserver to Cloudflare Workers — delivering encrypted messaging at the edge with automatic post-quantum cryptography.
A vulnerability has been discovered in Microsoft Office which could allow for a security feature bypass. Microsoft Office is a suite of applications designed to help with productivity and...
Threat hunters and researchers are racing to contain a wave of voice-phishing attacks targeting single sign-on tools, already leading to data theft and extortion attempts. Multiple cybercrime...
Just around the corner, the world will see a full-fledged cyber war led by artificial intelligence (AI) offensive and defensive agents, Israel National Cyber Directorate (INCD) Chief Yossi Karadi...
The Trump administration is planning to use artificial intelligence to write federal transportation regulations, according to U.S. Department of Transportation records and interviews with six...
Building and car alarm systems managed by Russian company Delta have been disrupted by a cyberattack blamed on a "hostile foreign state."
The Pentagon said it consolidated policies around protecting American military facilities from drone threats after unclear guidance that left base commanders scrambling on how to respond and years...
The Trump administration is rescinding a Biden-era memo that was intended to help agencies buy secure software, with the current Office of Management and Budget saying it relied on “unproven and...
China hacked the mobile phones of senior UK government officials in Downing Street for several years. The spying operation is understood to have compromised senior members of the government,...
French govt says state-run service 'Visio' will be more secure. Now where have we heard that name before? France has officially told Zoom, Teams, and the rest of the US videoconferencing herd to...
Microsoft on Monday issued out-of-band security patches for a high-severity Microsoft Office zero-day vulnerability exploited in attacks. The vulnerability, tracked as CVE-2026-21509, carries a...
Austrian education ministry unaware of tracking software until campaigners launched case Microsoft illegally installed cookies on a school pupil's devices without consent, according to a ruling by...
The US Supreme Court is considering the constitutionality of geofence warrants. The case centers on the trial of Okello Chatrie, a Virginia man who pleaded guilty to a 2019 robbery outside of...
Posted by Nataliya Stanetsky, Fabricio Ferracioli, Elliot Sisteron, Irene Ang of the Android Security Team Phone theft is more than just losing a device; it's a form of financial fraud that can...
CERT Polska has received a report about 2 vulnerabilities (CVE-2025-12386 and CVE-2025-12387) found in LV-WR21Q firmware.
Victim and Big Brother Watch will argue the Met's policies are incompatible with human rights law The High Court will hear from privacy campaigners this week who want to reshape the way the...
A source trapped inside an industrial-scale scamming operation contacted me, determined to expose his captors’ crimes—and then escape. This is his story.