- Lazarus hackers breach six companies in watering hole attacks
- Microsoft fixes machine learning bug flagging Adobe emails as spam
- Frederick Health data breach impacts nearly 1 million patients
- Microsoft now pays up to $30,000 for some AI vulnerabilities
- Interlock ransomware claims DaVita attack, leaks stolen data
- Yale New Haven Health data breach affects 5.5 million patients
- Microsoft fixes bug causing incorrect 0x80070643 WinRE errors
- Linux ‘io_uring’ security blindspot allows stealthy rootkit attacks
- Russian army targeted by new Android malware hidden in mapping app
- WhatsApp’s new Advanced Chat Privacy protects sensitive messages
- Blue Shield of California leaked health data of 4.7 million members to Google
- FBI: US lost record $16.6 billion to cybercrime in 2024
- ASUS releases fix for AMI bug that lets hackers brick servers
- Phishing detection is broken: Why most attacks feel like a zero day
- Microsoft fixes Remote Desktop freezes caused by Windows updates
- Microsoft fixes Windows Server 2025 blue screen, install issues
- Marks & Spencer confirms a cyberattack as customers face delayed orders
- Active! Mail RCE flaw exploited in attacks on Japanese orgs
- Hackers abuse Zoom remote control feature for crypto-theft attacks
- Windows 10 KB5055612 preview update fixes a GPU bug in WSL2
- SK Telecom warns customer USIM data exposed in malware attack
- Ripple’s recommended XRP library xrpl.js hacked to steal wallets
- Cookie-Bite attack PoC uses Chrome extension to steal session tokens
- Microsoft Entra account lockouts caused by user token logging mishap
- WordPress ad-fraud plugins generated 1.4 billion ad requests per day
- Phishers abuse Google OAuth to spoof Google in DKIM replay attack
- State-sponsored hackers embrace ClickFix social engineering tactic
- Widespread Microsoft Entra lockouts tied to new security feature rollout
- New Android malware steals your credit cards for NFC relay attacks
- Critical Erlang/OTP SSH RCE bug now has public exploits, patch now
- Google Gemini AI is getting ChatGPT-like Scheduled Actions feature
- Interlock ransomware gang pushes fake IT tools in ClickFix attacks
- OpenAI details ChatGPT-o3, o4-mini, o4-mini-high usage limits
- FBI: Scammers pose as FBI IC3 employees to ‘help’ recover lost funds
- ASUS warns of critical auth bypass flaw in routers using AiCloud
- SonicWall SMA VPN devices targeted in attacks since January
- Chinese hackers target Russian govt with upgraded RAT malware
- 7 Steps to Take After a Credential-Based cyberattack
- Cisco Webex bug lets hackers gain code execution via meeting links
- Critical Erlang/OTP SSH pre-auth RCE is ‘Surprisingly Easy’ to exploit, patch now
- Entertainment services giant Legends International discloses data breach
- Windows NTLM hash leak flaw exploited in phishing attacks on governments
- Chrome extensions with 6 million installs have hidden tracking code
- Ahold Delhaize confirms data theft after INC ransomware claims attack
- CTM360 Tracks Global Surge in SMS-Based Reward and Toll Scams
- Microsoft: Office 2016 and Office 2019 reach end of support in October
- CISA warns of increased breach risks following Oracle Cloud leak
- New Windows Server emergency updates fix container launch issue
- CISA tags SonicWall VPN flaw as actively exploited in attacks
- Over 16,000 Fortinet devices compromised with symlink backdoor