Latest News

Envoy Air, which operates the American Eagle brand, has confirmed that business information was stolen by hackers.

The Ministry of State Security alleged that the NSA exploited vulnerabilities in the messaging services of a foreign mobile phone brand to steal sensitive information.

The U.S. is the top target for cyberattacks, with criminals and foreign adversaries targeting companies, governments and organizations.

Other noteworthy stories that might have slipped under the radar: Capita fined £14 million, ICTBroadcast vulnerability exploited, Spyware maker NSO acquired.

Set for January 2026 at Automotive World in Tokyo, the contest will have six categories, including Tesla, infotainment systems, EV chargers, and automotive OSes.

Sotheby's has disclosed a data breach impacting personal information, including SSNs.

CVE-2025-55315 is an HTTP request smuggling bug leading to information leaks, file content tampering, and server crashes.

Hackers stole names, addresses, dates of birth, email addresses, Social Security numbers, government IDs, and other information.

An attacker can exploit the flaws to put devices into a permanent DoS condition that prevents remote restoration.

The unauthenticated local file inclusion bug allows attackers to retrieve the machine key and execute code remotely via a ViewState deserialization issue.

The tech giant attributed the attacks to Vanilla Tempest, also known as Vice Spider and Vice Society.

AISLE aims to automate the vulnerability remediation process by detecting, exploiting, and patching software vulnerabilities in real time.

The company’s AI Security Engineer autonomously keeps enterprise data protected across devices and environments.

A public PoC existed when Adobe patched the Experience Manager Forms (AEM Forms) bug in early August.

Fuji Electric has released patches and Japan’s JPCERT has informed organizations about the vulnerabilities.