Ionut Arghire

Microsoft is urging customers to install the latest Exchange Server updates and harden their environments to prevent malicious attacks.

Iranian APT Moses Staff is leaking data stolen from Saudi Arabia government ministries under the recently created Abraham's Ax persona

Zacks Investment Research is informing 820,000 individuals that their personal data was compromised in a data breach.

CISA, NSA, and MS-ISAC issued an alert on the malicious use of RMM software to steal money from bank accounts.

Chinese threat actor DragonSpark has been using the SparkRAT open source backdoor in attacks targeting East Asian organizations.

CISA has published a report detailing the cybersecurity risks to the K-12 education system and recommendations on how to secure it.

Strata Identity has raised $26 million in a Series B funding round led by Telstra Ventures, with additional investment from Forgepoint Capital, Innovating Capital,...

Video games developer Riot Games says source code was stolen from its development environment in a ransomware attack

Technical details published for an Arm Mali GPU flaw leading to arbitrary kernel code execution and root on Pixel 6.

Security researchers have observed an uptick in attacks targeting CVE-2021-35394, an RCE vulnerability in Realtek Jungle SDK.

Cygnvs emerges from stealth mode with an incident response platform and $55 million in Series A funding.

Microsoft plans to improve the protection of Office users by blocking XLL add-ins from the internet.

Two vulnerabilities in Samsung’s Galaxy Store that could be exploited to install applications or execute JavaScript code by launching a web page.

NSA publishes guidance to help system administrators identify and mitigate cyber risks associated with transitioning to IPv6.

Out of the 335 public recommendations on a comprehensive cybersecurity strategy made since 2010, 190 were not implemented by federal agencies as of December...

A digital ad fraud scheme dubbed "VastFlux" spoofed over 1,700 apps and peaked at 12 billion ad requests per day before being shut down.

PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.

Organizations are being compromised in attacks exploiting a recently patched Zoho ManageEngine vulnerability.

Drupal released updates that resolve four vulnerabilities in Drupal core and three plugins.

A China-linked hackers are exploiting a vulnerability (CVE-2022-42475 ) in Fortinet FortiOS SSL-VPN, Mandiant claims.