Latest News

The Midnight Blizzard cyberspies used compromised websites to trick users into authorizing devices they controlled.

The vulnerability (CVE-2025-55177) was exploited along an iOS/macOS zero-day in suspected spyware attacks.

Noteworthy stories that might have slipped under the radar: communications of dozens of Iranian ships disrupted, only apps from verified developers will run on Android devices, and AI used across multiple phases of malicious attacks.

Authorities say VerifTools sold fake driver’s licenses and passports worldwide, enabling fraudsters to bypass KYC checks and access online accounts.

Google says the same OAuth token compromise that enabled Salesforce data theft also let hackers access a small number of Workspace accounts via the Salesloft Drift integration.

The credit reporting firm did not name the third-party application involved in the incident, only noting that it was used for its US consumer support operations.

State officials confirm ransomware forced office closures, disrupted services, and led to data theft, as Nevada works with CISA and law enforcement to restore critical systems.

US Treasury sanctions Russian and Chinese entities tied to North Korea’s use of fake IT workers, who exploited stolen identities, AI, and malware to funnel millions back to Pyongyang.

Storm-0501 has been leveraging cloud-native capabilities for data exfiltration and deletion, without deploying file-encrypting malware.

China-linked APT ‘Salt Typhoon’ exploited known router flaws to maintain persistent access across telecom, government, and military networks, giving Beijing’s intelligence services global surveillance reach.

CrowdStrike says the acquisition will bring valuable technology to enhance its Falcon Next-Gen SIEM.

Join this live discussion to learn how organizations can strengthen ransomware defenses while staying ahead of tightening compliance requirements.

With more than 4 million weekly downloads, the Nx build platform became the first known supply chain breach where hackers weaponized AI assistants for data theft.

AI-powered phishing attacks leverage ConnectWise ScreenConnect for remote access, underscoring their sophistication.

Google says the hackers systematically exported corporate data, focusing on secrets such as AWS and Snowflake keys.