SecurityWeek

Researchers demonstrated GPUHammer — a Rowhammer attack against GPUs — by degrading the accuracy of machine learning models.

Details have been disclosed for an eSIM hacking method that could impact many, but the industry is taking action.

Ingram Micro has restored operations across all countries and regions after disconnecting systems to contain a ransomware attack.

Three teens and a woman have been arrested by the UK’s NCA over the hacking of M&S, Co-op and Harrods.

Hackers compromised names, addresses, email address, phone numbers, and other information pertaining to Qantas customers.

‘Machine identities’, often used interchangeably with ‘non-human identities’ (NHIs), have been increasing rapidly since the start of digital transformation.

PCA Cyber Security has discovered critical vulnerabilities in the BlueSDK Bluetooth stack that could have allowed remote code execution on car systems.

AI-made decisions are in many ways shaping and governing human lives. Companies have a moral, social, and fiduciary duty to responsibly lead its take-up.

AI-powered MDR provider AirMDR has raised $15.5 million in funding (seed and infusion investment) to support its R&D efforts.

Nippon Steel Solutions has disclosed a data breach that resulted from the exploitation of a zero-day in network equipment.

New Samsung Galaxy features include protections for on-device AI, expanded cross-device threat detection, and quantum-resistant encryption for network security.

Industrial solutions providers Siemens, Schneider Electric and Phoenix Contact have released July 2025 Patch Tuesday ICS security advisories.

Multiple vulnerabilities in Ruckus Wireless management products could be exploited to fully compromise the managed environments.

Nova Scotia Power is notifying individuals affected by the recent data breach, including in the United States.

Ivanti, Fortinet, and Splunk have released patches for critical- and high-severity vulnerabilities in their products.

Xu Zewei has been arrested on charges that he is a member of the Chinese state-sponsored hacking group Hafnium (Silk Typhoon).

Adobe patches were also released for medium-severity flaws in After Effects, Audition, Dimension, Experience Manager Screens, FrameMaker, Illustrator, Substance 3D Stager, and Substance 3D Viewer.

Patch Tuesday July 2025: Microsoft rolled out fixes for 130 vulnerabilities, including a zero-day in SQL Server.

The warning came after the department discovered that an impostor attempted to reach out to at least three foreign ministers, a U.S. senator and a governor.

A stolen copy of Shellter Elite shows how easily legitimate security tools can be repurposed by threat actors when vetting and oversight fail.