Eric Geller reports: A Cybersecurity and Infrastructure Security Agency program that warns organizations about imminent ransomware attacks has suffered a major setback after its lead staffer left...
Arielle Waldman reports: Opposition is building as industry organizations weigh in on the public comment period for proposed changes to the Health Insurance Portability and Accountability Act...
This is pretty scary: Urban VPN Proxy targets conversations across ten AI platforms: ChatGPT, Claude, Gemini, Microsoft Copilot, Perplexity, DeepSeek, Grok (xAI), Meta AI. For each platform, the...
Apple has been fined €98.6 million ($116 million) by Italy's antitrust authority after finding that the company's App Tracking Transparency (ATT) privacy framework restricted App Store...
Big AI companies courted controversy by scraping wide swaths of the public internet. With the rise of AI agents, the next data grab is far more private.
The ransomware rate in the region remains consistently high, nearly twice the global average.
East Asia saw a sharp increase in the percentage of ICS computers on which malicious scripts and phishing pages were blocked. The review of key cybersecurity issues in Asian regions.
A Cybersecurity and Infrastructure Security Agency program that warns organizations about imminent ransomware attacks has suffered a major setback after its lead staffer left the agency rather...
Kaspersky GReAT experts analyze the Evasive Panda APT's infection chain, including shellcode encrypted with DPAPI and RC5, as well as the MgBot implant.
Plans move to Rust, with help from AI Microsoft wants to translate its codebase to Rust, and is hiring people to make it happen.…
In April 2022, Russian pharmaceutical company Gemotest suffered a data breach that exposed 31 million patients. The data contained 6.3 million unique email addresses along with names, physical...
Security advice for users and maintainers to help reduce the impact of the next supply chain malware attack. The post Strengthening supply chain security: Preparing for the next malware campaign...
Customers will be able to see vulnerabilities, prioritize risks, and close them with automated workflows. After over a week of speculation, ServiceNow announced on Tuesday that it has agreed to...
Cybersecurity researchers have discovered two malicious Google Chrome extensions with the same name and published by the same developer that come with capabilities to intercept traffic and capture...
From the U.S. Department of Justice: An Arizona man was sentenced Friday to 15 years in prison and ordered to pay more than $452 million in restitution for conspiring to defraud Medicare and other...
From the U.S. Attorney’s Office, Northern District of Georgia: Fraud ring responsible for more than $28 million in unauthorized bank transfers from U.S. victims The Justice Department today...
The New York Police Department's “mosque-raking” program targeted Muslim communities across NYC. Now, as the city's first Muslim mayor takes office, one man is fighting—again—to fully expose it.
Odia Kagan of FoxRothschild writes: If you are a government contractor offering government agencies products utilizing Large Language Models (LLM), your disclosure requirements just increased. Per...
Ashden Fein, Caleb Skeath, John Webster Leslie, and Krissy Chapman of Covington and Burling write: On December 11, 2025, the U.S. Cybersecurity and Infrastructure Security Agency (“CISA”) released...
Today’s reminder that even when the government audits school districts and issues recommendations, they don’t necessarily implement them fully, leaving them still vulnerable. In September 2023,...
Baker University in Kansas issued a press release this week about a data breach In December 2024. The statement includes: In December 2024, Baker discovered suspicious activity related to certain...
WBRZ reports: The Louisiana Office of Student Financial Assistance sent out a letter to students warning them of a “data security incident” involving their information. The letter, dated Dec. 5,...
Pierluigi Paganini reports: Romanian Waters (Administrația Națională Apele Române), the country’s water management authority, suffered a ransomware attack over the weekend. According to the...
Automaker's third security snafu in three years Thousands of Nissan customers are learning that some of their personal data was leaked after unauthorized access to a Red Hat-managed server,...
A law enforcement operation coordinated by INTERPOL has led to the recovery of $3 million and the arrest of 574 suspects by authorities from 19 countries, amidst a continued crackdown on...
Passwd is designed specifically for organizations operating within Google Workspace. Rather than competing as a general consumer password manager, its purpose is narrow, and business-focused:...
Redmond gets in early for the twelve whoopsies of Christmas Microsoft has hustled out an out-of-band update to address a Message Queuing issue introduced by the December 2025 update.…
A vulnerability has been discovered in WatchGuard Fireware OS, which could allow for unauthenticated arbitrary code execution. WatchGuard Fireware is the proprietary operating system that powers...
Following our earlier reporting on RTO-themed threats, CRIL observed a renewed phishing wave abusing the e-Challan ecosystem to conduct financial fraud. Unlike earlier Android malware-driven...
The U.S. Justice Department (DoJ) on Monday announced the seizure of a web domain and database that it said was used to further a criminal scheme designed to target and defraud Americans by means...