- Google Chrome disables uBlock Origin for some in Manifest v3 rollout
- SpyLend Android malware downloaded 100,000 times from Google Play
- Hacker steals record $1.46 billion from Bybit ETH cold wallet
- CISA flags Craft CMS code injection flaw as exploited in attacks
- Apple pulls iCloud end-to-end encryption feature in the UK
- Apiiro unveils free scanner to detect malicious code merges
- Black Basta ransomware gang’s internal chat logs leak online
- US healthcare org pays $11M settlement over alleged cybersecurity lapses
- Chinese hackers use custom malware to spy on US telecom networks
- Integrating LLMs into security operations using Wazuh
- Microsoft fixes Power Pages zero-day bug exploited in attacks
- Microsoft testing fix for Windows 11 bug breaking SSH connections
- Darcula PhaaS can now auto-generate phishing kits for any brand
- New NailaoLocker ransomware used against EU healthcare orgs
- CISA and FBI: Ghost ransomware breached orgs in 70 countries
- Phishing attack hides JavaScript using invisible Unicode trick
- New FrigidStealer infostealer infects Macs via fake browser updates
- Australian fertility services giant Genea hit by security breach
- Palo Alto Networks tags new firewall bug as exploited in attacks
- The Browser Blind Spot: Why Your Browser is the Next Cybersecurity Battleground
- Russian phishing campaigns exploit Signal’s device-linking feature
- New WinRAR version strips Windows metadata to increase privacy
- WinRAR 7.10 boosts Windows privacy by stripping MoTW data
- Cracked Garry’s Mod, BeamNG.drive games infect gamers with miners
- Venture capital giant Insight Partners hit by cyberattack
- Microsoft reminds admins to prepare for WSUS driver sync deprecation
- Chinese hackers abuse Microsoft APP-v tool to evade antivirus
- New OpenSSH flaws expose SSH servers to MiTM and DoS attacks
- Juniper patches critical auth bypass in Session Smart routers
- Compliance Isn’t Security: Why a Checklist Won’t Stop Cyberattacks
- Lee Enterprises newspaper disruptions caused by ransomware attack
- Chase will soon block Zelle payments to sellers on social media
- Microsoft to remove the Location History feature in Windows
- X now blocks Signal contact links, flags them as malicious
- Microsoft spots XCSSET macOS malware variant used for crypto theft
- Fintech giant Finastra notifies victims of October data breach
- Microsoft rolls out BIOS update that fixes ASUS blue screen issues
- Google Chrome’s AI-powered security feature rolls out to everyone
- New FinalDraft malware abuses Outlook mail service for stealthy comms
- Microsoft: Hackers steal emails in device code phishing attacks
- Hackers exploit authentication bypass in Palo Alto Networks PAN-OS
- SonicWall firewall bug leveraged in attacks after PoC exploit release
- SonicWall firewall bug targeted in attacks after PoC exploit release
- PirateFi game on Steam caught installing password-stealing malware
- Malicious PirateFi game infects Steam users with Vidar malware
- PostgreSQL flaw exploited as zero-day in BeyondTrust breach
- Chinese hackers breach more US telecoms via unpatched Cisco routers
- Microsoft fixes bug causing Windows Server 2025 boot errors
- whoAMI attacks give hackers code execution on Amazon EC2 instances
- Dutch Police seizes 127 XHost servers, dismantles bulletproof hoster
