Latest News

Lookout details EagleMsgSpy, a surveillance tool used by Chinese law enforcement to collect data from Android devices.

Oasis Security has disclosed AuthQuake, a method for bypassing Microsoft MFA within an hour without user interaction.

Law enforcement agencies in 15 countries cooperated in taking down 27 websites selling DDoS-for-hire services.

Cleo has released patches for the exploited vulnerability and security firms have detailed the malware delivered in attacks.

Two vulnerabilities in the Hunk Companion and WP Query Console WordPress plugins allow attackers to backdoor websites.

Cupertino ships iOS 18.2 and macOS Sequoia 15.2 patches to fix data leakage, sandbox escapes and code exection vulnerabilities.

The doughnut and coffeehouse chain confirmed a cyberattack took out parts of its online ordering system in parts of the United States.

Academic researchers devise BadRAM, a new attack that uses $10 equipment to break AMD’s latest trusted execution environment protections.

Google pushes out major Chrome browser updates to fix multiple serious security defects.

This eye-opening session that pulls back the curtain on how bad actors exploit social engineering tactics, like deepfake technology and Business Email Compromise (BEC).

Atlassian and Splunk on Tuesday announced patches for over two dozen vulnerabilities, including high-severity flaws.

Exploitation of a vulnerability affecting Cleo file transfer tools has been linked to the new Termite ransomware group.

Google’s Willow quantum chip marks a transformative moment in quantum computing development.

Center for Vein Restoration discloses data breach impacting the personal, medical, and financial information of 446,000 individuals.

December 2024 ICS Patch Tuesday brings advisories from CISA, as well as several major industrial automation companies.