Ionut Arghire

Recorded Future observes renewed Predator spyware activity on fresh infrastructure after a drop caused by US sanctions.

The latest Apache OFBiz update patches CVE-2024-45195, a bypass of a recently disclosed remote code execution bug exploited in attacks.

Veeam has released patches for critical-severity vulnerabilities in Backup & Replication, ONE, and Service Provider Console.

A vulnerability in the LiteSpeed Cache WordPress plugin leads to the exposure of sensitive information, including user cookies.

Planned Parenthood confirms "cybersecurity incident" as RansomHub ransomware gang threatens to leak 93 Gb of data stolen from the nonprofit last week.

Cisco has released patches for multiple vulnerabilities, including two critical-severity flaws in Smart Licensing Utility.

Franklin Ifeanyichukwu Okwonna and Ebuka Raphael Umeti were sentenced to prison in the US for business email compromise (BEC) fraud.

Microchip Technology says employee contact information and other types of data was stolen in an August ransomware attack.

The FBI warns of North Korean threat actors conducting social engineering campaigns targeting employees in the cryptocurrency industry.

Zyxel has released patches for multiple vulnerabilities in its networking devices, including a critical flaw impacting access points and security routers.

D-Link warns of multiple remote code execution vulnerabilities impacting its discontinued DIR-846 router model.

Google has released Android security updates to patch an exploited local privilege escalation vulnerability.

VMware rolls out patch for a high-severity code execution vulnerability in the Fusion hypervisor.

The FTC complaint alleges that Verkada’s failures allowed a hacker to access customers’ security cameras.

The City of Columbus sued a researcher who disclosed the impact of the data breach caused by a recent ransomware attack.

Google has released two Chrome 128 updates to address six high-severity vulnerabilities reported by external researchers.

Fortra limits access to FileCatalyst Workflow database after vendor knowledgebase article leaks default credentials.

Censys warns of over 1,200 internet-accessible WhatsUp Gold instances potentially exposed to malicious attacks.

The sporting goods retail chain said the incident exposed portions of the its IT systems containing confidential information.

Cisco on Wednesday announced NX-OS software updates that resolve multiple vulnerabilities, including a high-severity DoS bug.