Latest News

Microsoft flags a new Kremlin hacking team buying stolen usernames and passwords from infostealer markets for use in cyberespionage attacks. 

Security firm Socket warns flags a campaign targeting NPM users with tens of malicious packages that can hijack system information.

The agencies said that the group, which they called Laundry Bear, is actively trying to steal sensitive data from EU and NATO countries and is “extremely likely Russian state supported.”

As cloud security spending surges to $111 billion, new data highlights Microsoft's dominance, the U.S. market's outsized role, and Google's strategic acquisition of Wiz.

The FBI warns US law firms that the Silent Ransom Group (SRG) has been constantly targeting the legal industry.

Nova Scotia Power has finally admitted that the recent cyberattack was a ransomware attack, but it hasn’t paid the hackers.

Signal said the privacy feature is on by default for every Windows 11 user to block Microsoft from taking screenshots for Windows Recall.

Noteworthy stories that might have slipped under the radar: serious vulnerabilities found in a Volkswagen app, Australian hacker DR32 sentenced in the US, and Immersive launches OT security training solution.

SecurityWeek’s 2025 Threat Detection & Incident Response (TDIR) Summit took place as a virtual summit on May 21st.

Russian national Rustam Gallyamov was indicted in the US for his leading role in the development and distribution of Qakbot malware.

CISA warns companies of a widespread campaign targeting a Commvault vulnerability to hack Azure environments.

A Chinese threat actor exploited a zero-day vulnerability in Trimble Cityworks to hack local government entities in the US.

The DanaBot botnet ensnared over 300,000 devices and caused more than $50 million in damages before being disrupted.

A Chinese espionage group has been chaining two recent Ivanti EPMM vulnerabilities in attacks against organizations in multiple critical sectors.

Akamai documents a privilege escalation flaw in Windows Server 2025 after Redmond declines to ship an immediate patch.