SecurityWeek

Chipmaker says there are indications from Google Threat Analysis Group that a trio of flaws “may be under limited, targeted exploitation.”

Exploitation of the vBulletin vulnerability tracked as CVE-2025-48827 and CVE-2025-48828 started shortly after disclosure.

Patterns of concerning behavior led Google to remove trust in certificates from Chunghwa Telecom and Netlock from Chrome.

Russian national Vitaly Nikolaevich Kovalev is believed to be the leader of the Conti and TrickBot cybercrime groups.

The critical flaw, tracked as CVE-2025-20188 (CVSS score of 10/10), allows attackers to execute arbitrary code remotely.

Counter antivirus services such as AVCheck allow cybercriminals to test whether their malware is detected by antivirus products.

Elected officials, business executives and other prominent figures in recent weeks received messages from someone impersonating Susie Wiles.

Noteworthy stories that might have slipped under the radar: simple PoC code released for Fortinet zero-day, OpenAI O3 disobeys shutdown orders, source code of SilverRAT emerges online.

Security researchers flag two phishing campaigns abusing Firebase and Google Apps Script to host malware and fake login pages.

The US Treasury Department US has slapped sanctions on Funnull Technology for providing support to cryptocurrency investment scams.

Join the live webinar to understand why data in itself is not enough to make informed decisions for prioritization.

China-linked hackers used a compromised government site to target other government entities with the ToughProgress malware that uses an attacker-controlled Google Calendar for C&C.

The roadmap provides an overview of four key stages of the migration process, namely preparation, baseline understanding, planning and execution, and monitoring and evaluation.

The IT software provider says ScreenConnect users were impacted by the attack, which exploited a high-severity ASP.NET vulnerability.

The guidance outlines the benefits and challenges or SIEM and SOAR platforms, and shares implementation recommendations.

Active since at least 2023, the hacking group has been targeting the financial, government, IT, logistics, retail, and education sectors.

Security startup Unbound has raised $4 million in funding to help organizations adopt generative-AI tools securely and responsibly.

Professional hackers have built a network of ASUS routers that can survive firmware upgrades, factory reboots and most anti-malware scans.

Website remains offline following suspected cyber incident, as experts warn of escalating threats targeting major retailers

Adidas said hackers accessed a “third-party customer service provider” and stole customer information.