Ionut Arghire

The personal information of 167,000 individuals was compromised in an October 2024 data breach at Central Kentucky Radiology.

Two critical vulnerabilities in Cisco ISE could allow remote attackers to execute arbitrary code with root privileges.

Citrix has released patches for a critical vulnerability in NetScaler ADC and NetScaler Gateway exploited as a zero-day.

G Data has observed a surge in malware infections originating from ConnectWise applications with modified certificate tables.

SonicWall says a modified version of the legitimate NetExtender application contains information-stealing code.

A high-severity vulnerability in GitHub Enterprise Server could have allowed remote attackers to execute arbitrary code.

Chrome 138 and Firefox 140 are rolling out with fixes for two dozen vulnerabilities, including high-severity memory safety issues.

Russia-linked APT28 deployed new malware against Ukrainian government targets through malicious documents sent via Signal chats.

Palo Alto Networks has observed a spike in Prometei activity since March 2025, pointing to a resurgence of the botnet.

A Chinese APT has been infecting SOHO routers with the ShortLeash backdoor to build stealthy espionage infrastructure.

Newly discovered spyware has sneaked into Apple’s App Store and Google Play to steal images from users’ mobile devices.

North Korean hackers employ social engineering to trick Zoom Meeting participants into executing system-takeover commands.

A critical-severity vulnerability in Teleport could allow remote attackers to bypass SSH authentication and access managed systems.

The personal information of 743,000 individuals was compromised in a 2024 ransomware attack on McLaren Health Care.

The Godfather Android trojan uses on-device virtualization to hijack legitimate applications and steal users’ funds.

Threat actors are exploiting a critical-severity vulnerability in Motors theme for WordPress to change arbitrary user passwords.

A threat actor is abusing Cloudflare Tunnels for the delivery of a Python loader as part of a complex infection chain.

Personal data of former and current council workers, including election staff, may have been accessed by hackers.

Trend Micro and ReversingLabs uncovered over 100 GitHub accounts distributing malware embedded in open source hacking tools.

A ransomware group has claimed the theft of millions of files from procurement service provider Chain IQ and 19 other companies.