Ionut Arghire

Instant Checkmate and TruthFinder have disclosed data breaches affecting a total of more than 20 million users.

Tallahassee Memorial HealthCare was forced to cancel procedures and divert patients after taking systems offline following a Thursday night cyberattack.

Former Ubiquiti employee Nickolas Sharp has admitted in court to abusing company-provided credentials to steal data and then attempting to extort Ubiquiti.

A critical authentication vulnerability in Jira Service Management Server and Data Center allows attackers to impersonate users.

Critical Oracle E-Business Suite vulnerability exploited in attacks shortly after PoC is published.

Google announces an expansion of its OSS-Fuzz rewards program to help find software vulnerabilities before they are exploited.

A high-severity format string vulnerability in F5 BIG-IP can be exploited to cause a DoS condition and potentially execute arbitrary code.

Cisco this week announced patches for a high-severity command injection vulnerability allowing malicious code to persist across reboots.

The sophisticated HeadCrab malware has infected at least 1,200 Redis servers and abused them for cryptomining.

Security researchers are warning of a new wave of malicious NPM and PyPI packages designed to steal user information and download additional payloads.

Cyberinsurance and protection firm Boxx Insurance raises $14.4 million in a Series B funding round led by Zurich Insurance.

The Prilex point-of-sale (PoS) malware has been modified to block contactless transactions to force the insertion of credit cards and steal their information.

Censys finds 30,000 internet-exposed QNAP appliances that are likely affected by a recently disclosed critical code injection vulnerability.

All-in-one cybersecurity platform Guardz today emerged from stealth mode with $10 million in seed funding.

QNAP warns users of a critical vulnerability that allows attackers to inject malicious code on NAS devices.

GitHub this week announced the revocation of three certificates used for the GitHub Desktop and Atom applications.

Vulnerabilities in open source health records management software OpenEMR could lead to patient data compromise, remote code execution (RCE).

Russia-linked cyberespionage group APT29 has been observed using embassy-themed lures and the GraphicalNeutrino malware in recent attacks.

Lexmark warns of a remote code execution (RCE) vulnerability impacting over 120 printer models, for which PoC code has been published.

The latest BIND updates patch multiple remotely exploitable vulnerabilities that could lead to denial-of-service (DoS).