A threat actor with affiliations to China has been linked to a "multi-wave intrusion" targeting an unnamed Azerbaijani oil and gas company between late December 2025 and late February 2026,...
West Pharmaceutical Services disclosed that it was the target of a cyberattack that resulted in data exfiltration and system encryption. [...]
Security pros warn YellowKey claim could make stolen laptops a much bigger problem
SentinelOne’s latest report examines the evolving 'secrets' threatscape, showing how modern cloud and AI infrastructures are being exploited.
The Iran-linked hacking group MuddyWater (a.k.a. Seedworm, Static Kitten) launched a broad cyber-espionage campaign targeting at least nine high-profile organizations across multiple sectors and...
Palo Alto Networks security advisory (AV26-462)
F5 security advisory (AV26-461)
Citizen Lab director Ron Deibert recently spoke at the OSCE Supplementary Human Dimension Meeting II on Safeguarding Civil Space in the Digital Age. The post Ron Deibert Speaks at the OSCE:...
TL;DR: Stop chasing thousands of "toast" alerts. Join experts from Wiz and Okta/GitLab to learn how hackers connect tiny flaws to build a "Lethal Chain" to your data—and how to break it. Register...
Security teams have never had better visibility into their environments and never been worse at confirming what they fix stays fixed. Mandiant's M-Trends 2026 report puts the mean time to exploit...
A critical vulnerability affecting certain configurations of the Exim open-source mail transfer agent could be exploited by an unauthenticated remote attacker to execute arbitrary code. [...]
Microsoft on Tuesday released patches for 138 security vulnerabilities spanning its product portfolio, although none of them have been listed as publicly known or under active attack. Of the 138...
Symantec researchers disclosed that Iran-linked threat actor Seedworm breached a major South Korean electronics manufacturer in February 2026... The post Symantec uncovers Iran-linked Seedworm...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA), alongside Group of Seven (G7) partners including Germany, Canada, France,... The post CISA, G7 partners release SBOM for AI...
Fortinet announced integration between its FortiAIGate platform and NVIDIA AI infrastructure and software to secure enterprise AI deployments... The post Fortinet enhances FortiAIGate platform...
Cyber-physical systems (CPS) protection company Claroty announced a partnership with Carahsoft Technology to expand Claroty’s footprint across government... The post Claroty and Carahsoft...
Exim security advisory (AV26-460)
The company says its new Incognito Chat allows you to use its AI chatbot without anyone else—including Meta—being able to access your conversations.
At a time when China, Russia and criminal groups are increasingly targeting military supply chains, a narrow regulatory gap has created an attack vector adversaries can exploit to undermine...
Cybersecurity researchers are calling attention to a new campaign dubbed GemStuffer that has targeted the RubyGems repository with more than 150 gems that use the registry as a data exfiltration...
Cybersecurity researchers are calling attention to a new campaign dubbed GemStuffer that has targeted the RubyGems repository with more than 150 gems that use the registry as a data exfiltration...
Škoda Auto, a wholly owned subsidiary of the Volkswagen Group, has disclosed a data breach after attackers hacked its online shop and stole the personal information of an undisclosed number of...
A large Pennsylvania pharmaceutical company said a ransomware attack has impacted critical systems used to ship, receive and manufacture products. West Pharmaceutical Services filed a report with...
BWH Hotels, a major global hospitality chain operating thousands of hotels around the world, has confirmed suffering a cyberattack and losing sensitive customer data. In a data breach notification...
The National Health Service in England has confirmed it is allowing staff from Palantir access to patient data following a change in policy. The U.S. spy-tech firm provides the technology for the...
n8n security advisory (AV26-459)
Russia’s Victory Day parade in Red Square over the weekend came and went without the usual accompaniment of high-end weapon systems and power projection that has long symbolized the annual event,...
Telecommunications providers have quietly become one of the most targeted sectors in global cybersecurity. While banks, hospitals, and government agencies often dominate headlines after major...
A French woman infected in the deadly hantavirus outbreak on a cruise ship is critically ill and being treated with an artificial lung, a doctor at the Paris hospital caring for the sickened...
Key Points Introduction The Gentlemen ransomware‑as‑a‑service (RaaS) operation is a relatively new group that emerged around mid‑2025. Its operators advertise the service across multiple...