China-linked APT group FamousSparrow hits targets in the Americas using upgraded SparrowDoor malware in new cyberespionage campaign, ESET reports.
Gray bots surge as generative AI scraper activity increases, impacting web applications with millions of requests daily
ASEC Blog publishes Ransom & Dark Web Issues Week 1, April 2025 The new ransomware group Chaos claims attacks on four U.S.-based companies. The customer database of South Korea’s AI-based legal...
Apple’s iOS 18.4 lets EU users choose default navigation apps like Google Maps or Waze, complying with the Digital Markets Act for more competition and user control.
As the war between Russian and Ukraine continues, Western cyber support is waning, raising growing concerns about the long-term effectiveness of these efforts.
Over 39 million secrets like API keys and account credentials were leaked on GitHub throughout 2024, exposing organizations and users to significant security risks. [...]
A critical vulnerability (CVE-2025-1268) in Canon printer drivers allows remote code execution. See which drivers are affected, how to patch them.
Microsoft has announced that hotpatch updates are now available for business customers using Windows 11 Enterprise 24H2 on x64 (AMD/Intel) systems, starting today. [...]
Accelerate your cloud SecOps transformation.
AWS, Microsoft Azure and Google Cloud Platform each scored 0% security effectiveness in CyberRatings.org’s evaluation of cloud network firewall vendors’ ability to prevent exploits and evasions....
Hackers stole $1.67bn of cryptocurrencies in the first quarter of 2025, a 303% increase
North Korea’s IT worker scam has expanded widely into Europe after years of focusing on U.S. companies, according to new research.
Delaware, USA, 2nd April 2025, CyberNewsWire
Michael Waltz used his personal Gmail to share "potentially exploitable" information, per the report.
Michael Waltz used his personal Gmail to share "potentially exploitable" information, per the report.
While its downloadable plugins make it highly customizable, KeePass’ unintuitive interface holds it back from one of our top password manager picks.
In this guest blog post, learn about six commonly missed AWS 'blind spots' that could lead to risk in your cloud infrastructure.
iOS 18.4 is here, and for some, it's causing major battery drain. Here are my top tips to get to the root of the issue and restore your iPhone's power ASAP.
Royal Mail is investigating claims of a security breach after a threat actor leaked over 144GB of data allegedly stolen from the company's systems. [...]
The financially motivated threat actor known as FIN7 has been linked to a Python-based backdoor called Anubis (not to be confused with an Android banking trojan of the same name) that can grant...
Phishing scams are becoming brutally effective, and even technically sophisticated people can be fooled. Here's how to limit the damage immediately and what to do next.
Apple has released a series of critical security updates to address vulnerabilities that were actively exploited as zero-day threats. These updates include backported patches for older versions of...
Cybersecurity researchers have discovered an updated version of a malware loader called Hijack Loader that implements new features to evade detection and establish persistence on compromised...
Hard on the heels of the disclosure of CVE-2025-24813, a RCE flaw in Apache Tomcat actively leveraged in the wild shortly after the release of its PoC, another vulnerability identified as...
Google has found a significant increase in North Korean actors attempting to gain employment as IT workers in European companies, leading to data theft and extortion
ChatGPT, the famous artificial intelligence chatbot that allows users to converse with various personalities and topics, has connectivity issues worldwide. [...]
Kidflix, one of the largest platforms used to host, share, and stream child sexual abuse material (CSAM) on the dark web, was shut down on March 11 following a joint action coordinated by German...
The U.S. House Homeland Security Subcommittee on Cybersecurity and Infrastructure Protection reviewed the State and Local Cybersecurity Grant... The post US House Subcommittee reviews State and...
Most orgs only discover their security controls failed after a breach. With OnDefend's continuous validation, you can test, measure, and prove your defenses work—before attackers exploit blind spots. [...]
The TookPS malicious downloader is distributed under the guise of DeepSeek, and further mimics UltraViewer, AutoCAD, SketchUp, Ableton, and other popular tools.