Jacksonville, United States, 3rd April 2025, CyberNewsWire
In late March 2025, CERT-UA observed a surge in cyber-espionage operations targeting Ukraine, orchestrated by the UAC-0200 hacking group using DarkCrystal RAT. Researchers have recently uncovered...
Written by: John Wolfram, Michael Edie, Jacob Thompson, Matt Lin, Josh Murchie On Thursday, April 3, 2025, Ivanti disclosed a critical security vulnerability, CVE-2025-22457, impacting Ivanti...
Cybersecurity researchers have disclosed details of a new vulnerability impacting Google's Quick Share data transfer utility for Windows that could be exploited to achieve a denial-of-service...
The first-of-its-kind solution integrates with company codebases, enabling AI agents to work in-context and generate production-grade, front-end code in minutes.
Ivanti has released security updates to patch a critical Connect Secure remote code execution vulnerability exploited by a China-linked espionage actor to deploy malware since at least mid-March...
Counterfeit versions of popular smartphone models that are sold at reduced prices have been found to be preloaded with a modified version of an Android malware called Triada. "More than 2,600...
Explore the best enterprise password managers that provide security and centralized control for managing and protecting passwords across your organization.
Today's SMBs face various cyber threats and risks. Learn how our partnership with Chubb helps you qualify and get quotes for cyber insurance.
The cybercriminal uses the service of Proton66, an infamous Russian-based bulletproof hosting provider, to deploy malware
Another year of CERT Polska’s activities is behind us. An absolutely record-breaking year, if we take into account practically all the statistics cited in our previous reports. Behind these...
Wake up to a new app on your iPhone after the iOS 18.4 update? You're not the only one.
This is the second part of Outpost24’s KrakenLabs investigation into EncryptHub, an up-and-coming cybercriminal who has been gaining popularity in recent months and is heavily expanding and...
Marlink, vendor of managed services for business-critical IT solutions, announced the creation of Marlink Cyber, a cybersecurity company... The post Marlink Cyber debuts with expanded capabilities...
New Trend Micro research detailed cyber espionage techniques of Earth Alux, a China-linked APT group, are putting critical... The post Trend Micro exposes Earth Alux Chinese APT targeting critical...
The State Bar of Texas is warning it suffered a data breach after the INC ransomware gang claimed to have breached the organization and began leaking samples of stolen data. [...]
Cybersecurity researcher Jeremiah Fowler uncovers a massive 47.8GB database with disturbing AI-generated content belonging to GenNomis.
Oracle has finally acknowledged to some customers that attackers have stolen old client credentials after breaching a "legacy environment" last used in 2017. [...]
The Cybersecurity and Infrastructure Security Agency (CISA) issued two crucial Industrial Control Systems (ICS) advisories, highlighting vulnerabilities that could have serious impacts on critical...
A cascading supply chain attack on GitHub that targeted Coinbase in March has now been traced back to a single token stolen from a SpotBugs workflow, which allowed a threat actor to compromise...
After a 2021 data breach affected 76 million customers, settlement checks are finally on the way. Here's what you can expect.
After a 2021 data breach affected 76 million customers, settlement checks are finally on the way. Here's what you can expect.
Highline Public Schools revealed that sensitive personal, financial and medical data was accessed by ransomware attackers during the September 2024 incident
Threat hunters are warning of a sophisticated web skimmer campaign that leverages a legacy application programming interface (API) from payment processor Stripe to validate stolen payment...
If your organization uses GitLab for managing your software development lifecycle, you must ensure you’re not misconfiguring the permissions of this open source DevSecOps platform. Doing so can...
In one of the largest coordinated law enforcement operations, authorities have dismantled Kidflix, a streaming platform that offered child sexual abuse material (CSAM). "A total of 1.8 million...
Cisco's latest study reveals how strong privacy practices are becoming a competitive advantage for businesses adopting AI - and why companies are shifting budgets to keep up.
Semperis claims 62% of water and electricity providers were hit by cyber-attacks in the past year
The computer scientist and AI researcher shares her thoughts on the technology’s potential and pitfalls – and what may lie ahead for us
BforeAI researchers discover 596 suspicious Bybit-themed domains designed to defraud visitors