Zoom and GitLab have released security updates to resolve a number of security vulnerabilities that could result in denial-of-service (DoS) and remote code execution. The most severe of the lot is...
Phishing campaign tries to reel in master passwords Password managers make great targets for attackers because they can hold many of the keys to your kingdom. Now, LastPass has warned customers...
A new EPIC report says data brokers, ad-tech surveillance, and ICE enforcement are among the factors leading to a “health privacy crisis” that is eroding trust and deterring people from seeking care.
Every managed security provider is chasing the same problem in 2026 — too many alerts, too few analysts, and clients demanding “CISO-level protection” at SMB budgets. The truth? Most MSSPs are...
Oleg Evgenievich Nefedov, a 35-year-old Russian national, is accused of forming and running the ransomware outfit since 2022. He’s now on Europol and Interpol’s most-wanted lists. The post Black...
A vulnerability has been discovered in Cisco Unified Communications Products which could allow for remote code execution. Cisco Unified Communications (UC) Products are an integrated suite of...
Gartner® doesn’t create new categories lightly. Generally speaking, a new acronym only emerges when the industry's collective "to-do list" has become mathematically impossible to complete. And so...
Have I Been Pwned reckons 72.7M customer accounts affected, sportswear firm remains silent Have I Been Pwned (HIBP) says 72.7 million accounts registered with Under Armour were affected by an...
Washington is getting a fresh reminder that offensive cyber policy doesn’t live in a silo. Leadership churn, workforce pressure and real-world operations are shaping the debate in real time. On...
Almost nine in 10 major companies exposed to actively exploited cyber vulnerabilities remain at risk for six months or more, despite available fixes, according to a new study by cyber risk...
Employees with the Department of Government Efficiency who were detailed to the Social Security Administration last March shared sensitive data through a nonsecure third party server, in violation...
For the past decade, artificial intelligence (AI) has been largely trained on text scraped from the internet. As it becomes multimodal, it now includes photographs, videos and more – but only what...
Security vulnerabilities were uncovered in the popular open-source artificial intelligence (AI) framework Chainlit that could allow attackers to steal sensitive data, which may allow for lateral...
Britain is considering an Australian-style ban on social media for children under 16, with Prime Minister Keir Starmer warning on Tuesday they risk being pulled into “a world of endless scrolling,...
Congressional appropriators announced funding legislation this week that extends an expiring cyber threat information-sharing law and provides $2.6 billion for the Cybersecurity and Infrastructure...
The recently discovered sophisticated Linux malware framework known as VoidLink is assessed to have been developed by a single person with assistance from an artificial intelligence (AI) model....
A draft proposal released on Tuesday, revising the EU’s Cybersecurity Act and its Network Information Systems Directive, would see member states phase out the use of high-risk suppliers within...
Dan Tentler reveals how consumer hardware coupled with Home Assistant can monitor hotel rooms, detect occupants through walls, and trigger automated alerts.
Get risk insights and take remediation actions right from your in-browser CSP portal, VCS console, or as you’re reading up on the latest threat research
Still dominant in Germany's networks, among others The European Commission (EC) wants a revised Cybersecurity Act to address any threats posed by IT and telecoms kit from third-country sources,...
Its very own Snooper’s Charter comes a month after proposed biometric tech expansion The Irish government is planning to bolster its police's ability to intercept communications, including...
5 steps to implement application control without sinking productivity—or your sanity
Minister unwraps ambassadors of the Software Security Code of Practice Britain's digital economy minister has sent forth a raft of companies as "ambassadors" to help organizations across the land...
Top DPDPA Compliance Platforms in India 2026 The Digital Personal Data Protection (DPDP) Act, introduced in 2023, marks a significant milestone in India’s journey toward robust data privacy. This...
LastPass is alerting users to a new active phishing campaign that's impersonating the password management service, which aims to trick users into giving up their master passwords. The campaign,...
No matter how many times we say it, the idea comes back again and again. Hopefully, this letter will hold back the tide for at least a while longer. Executive summary: Scientists have understood...
A security vulnerability has been disclosed in the popular binary-parser npm library that, if successfully exploited, could result in the execution of arbitrary JavaScript. The vulnerability,...
We are excited about Seqrite Data Privacy moving from lab to dogfooding to customer usage. Sometimes, we encounter a Data Deletion requirement in Seqrite Data Privacy, a privacy Management...
Ransomware negotiators dish on being in a ‘moral gray zone,’ unrestricted by accountability or industrywide rules of engagement. The post The thin line between saving a company and funding a crime...
A data breach involving Rumpke Waste & Recycling was reported in January 2026. See incident details, impact on customers, and recommended security measures.