What happens when cybercriminals no longer need deep skills to breach your defenses? Today’s attackers are armed with powerful tools that do the heavy lifting — from AI-powered phishing kits to...
BreachForums posts a PGP-signed message explaining the sudden April 2025 shutdown. Admins cite MyBB 0day vulnerability impacting the…
Contest platforms in web3 are an alternative to standard security reviews. The auditing firm Zellic bought the contest platform CodeArena last year and has decided to write a report on metrics for...
“It’s practically taboo” for cyber firms to talk about being targeted, but SentinelLabs said in a new report that it has observed multiple threats. The post Cybersecurity vendors are themselves...
“It’s practically taboo” for cyber firms to talk about being targeted, but SentinelLabs said in a new report that it has observed multiple threats. The post Cybersecurity vendors are themselves...
Not every security vulnerability is high risk on its own - but in the hands of an advanced attacker, even small weaknesses can escalate into major breaches. These five real vulnerabilities,...
Ongoing outages at British retail giant Marks & Spencer are caused by a ransomware attack believed to be conducted by a hacking collective known as "Scattered Spider" BleepingComputer has learned...
The researchers said the attackers behind the campaign had "deep understanding of the target community."
The researchers said the attackers behind the campaign had "deep understanding of the target community."
Industrial Cyber Days 2025: Manufacturing - Americas will take place online on May 13, 2025.
Industrial Cyber Days 2025: Manufacturing - APAC will take place virtually June 2-3, 2025.
Hitachi Vantara, a subsidiary of Japanese multinational conglomerate Hitachi, was forced to take servers offline over the weekend to contain an Akira ransomware attack. [...]
Government and telecommunications sectors in Southeast Asia have become the target of a "sophisticated" campaign undertaken by a new advanced persistent threat (APT) group called Earth Kurma since...
A Ukrainian cloud provider said it had restored services after a power outage disrupted operations for customers including government agencies and major companies over the weekend.
Members of the World Uyghur Congress living in exile were targeted with a spear phishing campaign deploying surveillance malware, according to the Citizen Lab
Employee benefits administration firm VeriSource Services is warning that a data breach exposed the personal information of four million people. [...]
Cybersecurity researchers are warning about a large-scale phishing campaign targeting WooCommerce users with a fake security alert urging them to download a "critical patch" but deploy a backdoor...
50% of mobile devices run outdated operating systems, increasing vulnerability to cyber-attacks, according to the latest report from Zimperium
Online fraud is costing billions - but Malwarebytes' new tools could be the secret weapon companies need to protect themselves and fight back.
Online fraud is costing billions - but Malwarebytes' new tools could be the secret weapon companies need to protect themselves and fight back.
Online fraud is costing billions - but Malwarebytes' security tools could be the secret weapon companies need to protect themselves and fight back.
Toronto, Canada, 28th April 2025, CyberNewsWire
Toronto, Canada, 28th April 2025, CyberNewsWire
According to the 2025 Global Threat Landscape Report from FortiGuard, threat actors are executing 36,000 scans per second
The new Barracuda 2025 Email Threats Report shines light on attackers’ tactics with valuable insights to help you stay ahead of today’s most pressing email security threats.
Over 1,200 internet-exposed SAP NetWeaver instances are vulnerable to an actively exploited maximum severity unauthenticated file upload vulnerability that allows attackers to hijack servers. [...]
Using Linux is a good start - but it is not enough. These easy privacy tricks could mean the difference between secure and sorry.
Threat actors have been observed exploiting two newly disclosed critical security flaws in Craft CMS in zero-day attacks to breach servers and gain unauthorized access. The attacks, first observed...
Offensive Security warned Kali Linux users to manually install a new Kali repository signing key to avoid experiencing update failures. [...]
2025-04-24 • Mandiant • Mandiant • elf.akira, elf.blackbasta, elf.lockbit, elf.systembc, js.gootloader, osx.lockbit, py.wirefire, win.akira, win.blackbasta, win.cobalt_strike, win.lockbit,...