Ionut Arghire

AI-native email security firm StrongestLayer has emerged from stealth mode with $5.2 million in seed funding.

Dozens of FortiWeb instances have been hacked after PoC targeting a recent critical vulnerability was shared publicly.

The CitrixBleed 2 vulnerability in NetScaler may expose organizations to compromise even if patches have been applied.

Google has filed a lawsuit against the Badbox 2.0 botnet operators, after identifying over 10 million infected Android devices.

Cybersecurity startup Empirical Security has raised $12 million in seed funding for its vulnerability management platform. 

Deployed on mobile devices confiscated by Chinese law enforcement, Massistant can collect user information, files, and location.

Cisco has released patches for multiple vulnerabilities, including a critical flaw in Cisco ISE that leads to remote code execution (RCE).

Oracle’s July 2025 Critical Patch Update contains 309 security patches that address approximately 200 unique CVEs.

Chinese hacking group Salt Typhoon targeted a National Guard unit’s network and tapped into communications with other units.

Cameron John Wagenius pleaded guilty to charges related to hacking into US telecommunications companies.

Italian company Exein has raised €70 million (~$81 million) in a Series C funding round led by Balderton.

Google has released a Chrome 138 security update that patches a zero-day, the fifth resolved in the browser this year.

Obfuscated JavaScript code is embedded within SVG files for browser-native redirection to malicious pages.

Zip Security’s Series A funding round led by Ballistic Ventures will help the company grow its engineering and go-to-market teams.

DragonForce says it stole more than 150 gigabytes of data from US department store chain Belk in a May cyberattack.

The MITRE AADAPT framework provides documentation for identifying, investigating, and responding to weaknesses in digital asset payments.

CISA considers the recently disclosed CitrixBleed 2 vulnerability an unacceptable risk and has added it to the KEV catalog.

The Interlock ransomware group has partnered with the KongTuke TDS to distribute a new RAT variant via FileFix attacks.

Vulnerabilities in Gigabyte firmware implementations could allow attackers to disable Secure Boot and execute code during the early boot phase.

Two Gravity Forms WordPress plugin versions available on the official download page were injected with malware in a supply chain attack.