SecurityWeek

Veeam and BeyondTrust have resolved several vulnerabilities that could be exploited for remote code execution.

Hackers have stolen personal and health information belonging to the customers of healthcare organizations served by Episource.

Researchers identify a previously unknown ClickFix variant exploiting PowerShell and clipboard hijacking to deliver the Lumma infostealer via a compromised travel site.

GreyNoise warns of a spike in exploitation attempts targeting a two-year-old vulnerability in Zyxel firewalls.

Google is warning insurance companies that Scattered Spider appears to have shifted its focus from the retail sector. 

Cloud security startup Circumvent has raised $6 million to develop a network of agents for autonomous prioritization and remediation.

CISA warns that a vulnerability impacting multiple discontinued TP-Link router models is exploited in the wild.

A high-severity authorization bypass vulnerability in Asus Armoury Crate provides attackers with low-level system privileges.

A critical Langflow vulnerability tracked as CVE-2025-3248 has been exploited to ensnare devices in the Flodrix botnet.

According to reports, the US Department of Justice will assess whether the deal would harm competition in the cybersecurity market.

The Archetyp Market drug marketplace has been targeted by law enforcement in an operation involving takedowns and arrests. 

Asheville Eye Associates says the personal information of 147,000 individuals was stolen in a November 2024 data breach.

The Indian car sharing marketplace Zoomcar learned that its systems were hacked after a threat actor contacted employees. 

The KillSec ransomware group has stolen hundreds of gigabytes of data from Ireland-based eyecare technology company Ocuco.

The emerging Anubis ransomware becomes a major threat, permanently deleting user files and making recovery impossible.

A strong AI deployment starts with asking the right questions, mapping your risks, and thinking like an adversary — before it’s too late.

Three high-severity Tenable Agent vulnerabilities could allow users to overwrite and delete files, or execute arbitrary code, with System privileges.

A cybersecurity incident at WestJet resulted in users experiencing interruptions when accessing the company’s application and website.

Noteworthy stories that might have slipped under the radar: Cloudflare outage not caused by cyberattack, Dutch police identified 126 users of Cracked.io, the Victoria’s Secret cyberattack has cost $10 million. 

Threat actors have abused the TeamFiltration pentesting framework to target over 80,000 Entra ID user accounts.