Latest News

A high-severity authorization bypass vulnerability in Asus Armoury Crate provides attackers with low-level system privileges.

A critical Langflow vulnerability tracked as CVE-2025-3248 has been exploited to ensnare devices in the Flodrix botnet.

According to reports, the US Department of Justice will assess whether the deal would harm competition in the cybersecurity market.

The Archetyp Market drug marketplace has been targeted by law enforcement in an operation involving takedowns and arrests. 

Asheville Eye Associates says the personal information of 147,000 individuals was stolen in a November 2024 data breach.

The Indian car sharing marketplace Zoomcar learned that its systems were hacked after a threat actor contacted employees. 

The KillSec ransomware group has stolen hundreds of gigabytes of data from Ireland-based eyecare technology company Ocuco.

The emerging Anubis ransomware becomes a major threat, permanently deleting user files and making recovery impossible.

A strong AI deployment starts with asking the right questions, mapping your risks, and thinking like an adversary — before it’s too late.

Three high-severity Tenable Agent vulnerabilities could allow users to overwrite and delete files, or execute arbitrary code, with System privileges.

A cybersecurity incident at WestJet resulted in users experiencing interruptions when accessing the company’s application and website.

Noteworthy stories that might have slipped under the radar: Cloudflare outage not caused by cyberattack, Dutch police identified 126 users of Cracked.io, the Victoria’s Secret cyberattack has cost $10 million. 

Threat actors have abused the TeamFiltration pentesting framework to target over 80,000 Entra ID user accounts.

Industry professionals comment on the Trump administration’s new executive order on cybersecurity. 

CISA warns that vulnerable SimpleHelp RMM instances have been exploited against a utility billing software provider’s customers.