SecurityWeek

Vulnerabilities in Airoha Bluetooth SoCs expose headphone and earbud products from multiple vendors to takeover attacks.

Canada has ordered Hikvision to cease all operations in the country and prohibited the purchase and use of Hikvision products within government entities.

The NSA’s Patrick Ware has taken up the role of Cybercrom executive director after the departure of Morgan Adamski.

Scattered Spider is targeting airlines and the recent WestJet hack is believed to be the work of the notorious cybercrime group.

The ransomware attack against grocery giant Ahold Delhaize has resulted in the personal information of millions getting stolen.

After more than 40 years of being set against a very recognizable blue, the updated error message will soon be displayed across a black background.

Noteworthy stories that might have slipped under the radar: Norwegian dam hacked, AT&T agrees to $177 million data breach settlement, Whole Foods distributor restores systems after attack. 

Microsoft is preparing a private preview of new Windows endpoint security platform capabilities to help antimalware vendors create solutions that run outside the kernel.

RevEng.ai has raised $4.15 million in seed funding for an AI platform that automatically detects malicious code and vulnerabilities in software.

China-linked Silver Fox hacking group is targeting Chinese users with fake installers carrying a RAT and a rootkit.

The Citrix NetScaler vulnerability tracked as CitrixBleed 2 and CVE-2025–5777 may be exploited in the wild for initial access.

A vulnerability in the extension publishing mechanism of Open VSX could have allowed attackers to tamper with any repository.

Hackers are abusing the Microsoft 365 Direct Send feature to deliver phishing emails that bypass email security controls.

The proposal seeks to ban all use of the technology in the U.S. government, with exceptions for use in research and counterterrorism efforts.

Nicholas Michael Kloster has pleaded guilty to computer hacking after targeting at least two organizations.

Bonfy.AI has emerged from stealth mode to help organizations prevent cybersecurity, privacy and compliance risks.

CISA is urging federal agencies to patch a recent AMI BMC vulnerability and a half-a-decade-old bug in FortiOS by July 17.

The personal information of 167,000 individuals was compromised in an October 2024 data breach at Central Kentucky Radiology.

Two critical vulnerabilities in Cisco ISE could allow remote attackers to execute arbitrary code with root privileges.

25-year-old Kai West, believed to be the hacker IntelBroker, was arrested in France and charged by the United States.