Ionut Arghire

Interpol last week announced the results of a joint law enforcement effort aimed at dismantling West-African cyber-enabled financial crime operations.

A threat actor is promoting on underground criminal forums a vendor-independent UEFI rootkit that can disable security software and controls, cybersecurity veteran Scott Scheferman...

Container and cloud-native application security provider Aqua Security warns that the existence of private NPM packages can be disclosed by performing timing attacks.

Biometric authentication provider IronVest this week has emerged from stealth mode with $23 million in seed funding.The investment round was led by Accomplice, with...

Cisco’s Talos security researchers warn of a newly identified attack framework and its associated remote access trojan (RAT) targeting Windows, Linux, and macOS systems.

ESET has published an analysis of the seven backdoors that Lebanese advanced persistent threat (APT) actor Polonium has been using since September 2021 in...

Data privacy platform DataGrail this week announced that it has raised $45 million in a Series C funding round that brings the total raised...

A newly identified cyberespionage group operating out of China has been targeting IT services providers and telecommunications companies with signed malware.

Google has announced passkey support in Android and Chrome, to protect users from credential leaks and phishing attacks.

A China-linked cyberespionage group was recently observed targeting a state legislature in the United States, Symantec warns.

Google announced on Tuesday that the latest Chrome update patches six high-severity vulnerabilities, including four use-after-free bugs.All the newly resolved vulnerabilities were discovered by...

More than 800 corporate users have been infected in a new QBot malware distribution campaign since September 28, Kaspersky warns.

German enterprise software maker SAP has released 15 new security notes on its October 2022 Security Patch Day, including two ‘hot news’ notes dealing...

Insurance giant Lloyd’s of London says it is working on restoring its systems after an investigation into a potential cyberattack found no evidence of...

Identity threat detection and response (ITDR) startup Oort announced that it has raised $15 million in Seed and Series A funding, which brings the...

A cybercrime group named LofyGang has distributed roughly 200 malicious NPM packages that have been downloaded thousands of times over the past year, according...

Japanese car manufacturer Toyota has disclosed a security incident that involved source code hosted on GitHub and which may have resulted in unauthorized access...

The Zimbra Collaboration Suite is impacted by a critical remote code execution vulnerability that remains unpatched, despite being exploited in attacks.

A critical vulnerability in vm2 may allow a remote attacker to escape the sandbox and execute arbitrary code on the host.A highly popular JavaScript...

The October 2022 security updates for Android started rolling out last week with patches for roughly 50 vulnerabilities, including a critical-severity flaw in the...