SecurityWeek

Signal said the privacy feature is on by default for every Windows 11 user to block Microsoft from taking screenshots for Windows Recall.

Noteworthy stories that might have slipped under the radar: serious vulnerabilities found in a Volkswagen app, Australian hacker DR32 sentenced in the US, and Immersive launches OT security training solution.

SecurityWeek’s 2025 Threat Detection & Incident Response (TDIR) Summit took place as a virtual summit on May 21st.

Russian national Rustam Gallyamov was indicted in the US for his leading role in the development and distribution of Qakbot malware.

CISA warns companies of a widespread campaign targeting a Commvault vulnerability to hack Azure environments.

A Chinese threat actor exploited a zero-day vulnerability in Trimble Cityworks to hack local government entities in the US.

The DanaBot botnet ensnared over 300,000 devices and caused more than $50 million in damages before being disrupted.

A Chinese espionage group has been chaining two recent Ivanti EPMM vulnerabilities in attacks against organizations in multiple critical sectors.

Akamai documents a privilege escalation flaw in Windows Server 2025 after Redmond declines to ship an immediate patch.

Marlboro-Chesterfield Pathology has been targeted by the SafePay ransomware group, which stole personal information from its systems.

UK retailer Marks & Spencer expects the disruptions caused by the recent cyberattack to continue through July. 

Despite massive investment, the explosion of sophisticated malware and deepfake attacks persists because organizations struggle to verify digital identities and establish fundamental trust.

In the end, cybersecurity isn’t just about collecting data. It’s about proving that your defenses actually work.

Cisco published 10 security advisories detailing over a dozen vulnerabilities, including two high-severity flaws in its Identity Services Engine (ISE) and Unified Intelligence Center.

GitLab and Atlassian have released patches for over a dozen vulnerabilities in their products, including high-severity bugs.

Russian military intelligence hackers intensify targeting of Western logistics and technology companies moving supplies into Ukraine. 

Redmond’s threat hunters found 394,000 Windows systems talking to Lumma controllers, a victim pool that included global manufacturers. 

More than 100 AutomationDirect MB-Gateway devices may be vulnerable to attacks from the internet due to CVE-2025-36535.

A mandatory filing to the Maine Attorney General says 69,461 customers nationwide were affected and dates the breach back to last December.

Matthew Lane allegedly hacked PowerSchool using stolen credentials and admitted to extorting a telecoms provider.