SecurityWeek

Ransomware is a major threat to the enterprise. Tools and training help, but survival depends on one thing: your organization’s muscle memory to respond fast and recover stronger.

The United States has warned of continued Iranian cyberattacks following American strikes on Iran’s nuclear facilities.

Forty-one cybersecurity merger and acquisition (M&A) deals were announced in June 2025.

As Kelly Benefits’s investigation into a recent data breach progressed, the number of impacted individuals continued to grow. 

A vulnerability in the Forminator WordPress plugin allows attackers to delete arbitrary files and take over impacted websites.

CISA says two more vulnerabilities in the messaging application TeleMessage TM SGNL have been exploited in the wild.

The International Criminal Court (ICC) has detected and contained a sophisticated and targeted cyberattack.

Australian airline Qantas says personal information stolen from systems hosting the service records of 6 million customers.

CISA has informed organizations about critical authentication bypass and remote code execution vulnerabilities in Microsens NMP Web+.

LevelBlue has announced plans to acquire Trustwave to create the largest pure-play managed security services provider (MSSP).

The move could reshape how LLM developers gather information — and force new deals between creators and AI companies.

Esse Health says the personal information of over 263,000 individuals was stolen in an April 2025 cyberattack.

Many Citrix NetScaler systems are exposed to attacks exploiting the vulnerabilities tracked as CVE-2025-5777 and CVE-2025-6543.

The US government is again warning about potential Iranian cyberattacks as researchers find that hackers’ favorite ICS targets remain exposed.

The US has made 29 searches of known or suspected laptop farms supporting North Korean individuals posing as US IT workers.

Google has released a Chrome 138 update that patches a high-severity vulnerability with an exploit in the wild.

Founded in 2015, the Tel Aviv based company has now raised more than $1 billion and claims more than 3,500 customers.

NASA needs to perform an agency-wide cybersecurity risk assessment and to complete important cybersecurity tasks for each of its projects.

Rachel Tobac is a cyber social engineer. She is skilled at persuading people to do what she wants, rather than what they know they ought to do.

Casie Antalis is the new program director of the Joint Cyber Coordination Group at the Cybersecurity and Infrastructure Security Agency.