Ionut Arghire

Founded in 2022, Singapore-based StealthMole leverages AI to analyze data from the dark web, deep web, and other sources to provide risk assessment and...

SAP has released 12 new and updated security notes on April 2024 Security Patch Day, including three notes dealing with high-severity vulnerabilities.

Veterinary services provider CVS Group is restoring systems after a cyberattack disrupted its UK operations.

Economic analysis and litigation support firm GMA says personal and medical information was stolen in a May 2023 data breach.

RansomHub is extorting Change Healthcare, threatening to release data stolen in a February 2024 BlackCat ransomware attack.

Researchers at the Shadowserver Foundation identify thousands of internet-exposed Ivanti VPN appliances likely impacted by a recently disclosed vulnerability leading to remote code execution.

The US Department of Health warns of financially motivated social engineering attacks targeting healthcare organizations.

Crowdfense has announced a $30 million exploit acquisition program covering Android, iOS, Chrome, and Safari zero-days.

Google fights Chrome V8 engine memory safety bugs with a new sandbox and adds it to the bug bounty program.

Cisco says it will not release patches for a cross-site scripting vulnerability impacting end-of-life small business routers.

NIST announced $3.6 million in grants for 18 education and community organizations to build the future cybersecurity workforce.

Attackers are exploiting a recent Magento vulnerability to deploy a persistent backdoor on ecommerce websites.

Japanese lens maker Hoya says production processes and ordering systems were disrupted by a cyberattack.

City of Hope is notifying 800,000 individuals of a data breach impacting their personal and health information.

A critical OS command injection in Progress Flowmon can be exploited to gain remote, unauthenticated access to the system.

Data breach impacting users’ personal information prompts survey rewards platform SurveyLama to reset passwords.

Google this week patched two Pixel phone zero-day vulnerabilities actively exploited by forensic companies to obtain data from devices.

A critical SQL injection vulnerability in the LayerSlider WordPress plugin allows attackers to extract sensitive information.

Jackson County, Missouri, discloses ‘significant disruptions’ to IT systems, says ransomware attack likely at fault.

Google pushes a new Chrome update to patch another zero-day vulnerability demonstrated at a hacking contest.