The Record

Spanish police accused a 19-year-old man of stealing 64 million personal data records from multiple companies and attempting to sell them on hacker forums.

Evan Tangeman became the ninth person to plead guilty as part of a wider Justice Department takedown of a criminal group known as the Social Engineering Enterprise.

A French judge will determine whether investigators should proceed with a complaint from the widow of slain writer Jamal Khashoggi alleging that Saudi Arabia deployed spyware on her devices before his killing.

Cyber investigators from the Seoul Metropolitan Police Agency seized devices and data from one of the country's largest tech firms to find evidence uncovering how the breach took place.

Legislators at both the state and federal level have increasingly scrutinized how AI models suck up data for training purposes.

The Financial Crimes Enforcement Network (FinCEN) released a study covering 4,194 ransomware incidents that were reported through the Bank Secrecy Act over the three-year period.

Instagram and Facebook users in the EU will now have the option to share less personal data and see fewer personalized ads.

The ban on Roblox has drawn a sharp backlash from the platform’s roughly 18 million monthly Russian users — mostly children and teenagers — who have launched social-media campaigns and video petitions urging officials to restore access.

Researchers have confirmed more than 30 affected organizations tied to the React2Shell bug that emerged last week.

In a case that affected 13 companies, including U.S. government contractors, a Maryland man was sentenced to 15 months in prison for allowing North Korean nationals to use his identity.

The bug, tagged as CVE-2025-55182 and referred to colloquially as React2Shell, was reported to Meta by researcher Lachlan Davidson on November 29 and publicly disclosed on Wednesday, when a fix was rolled out.

President Donald Trump's new 33-page national security strategy sets cybersecurity within the broader context of protecting critical infrastructure and managing regional affairs in the Western Hemisphere.

X's paid "blue checkmark" system for verifying users and other aspects of the platform violate the EU's Digital Services Act, the European Commission said in fining the company €120 million ($139 million).

The Cybersecurity and Infrastructure Security Agency (CISA), NSA and Canadian Centre for Cyber Security published an advisory on Thursday outlining the BRICKSTORM malware based off an analysis of eight samples taken from victim organizations.

The journalism nonprofit Reporters Without Borders and another organization reported phishing attempts to cybersecurity researchers, who tied them to a Russia-linked group known as Callisto, ColdRiver or Star Blizzard.

Police have used facial recognition in Britain since 2017 and controversy has mounted as more aggressive deployments have been undertaken, including live facial recognition which involves processing real-time video footage of people passing a camera.

Twin brothers with a history of cybercrimes have been arrested on charges of abusing their roles as federal contractors to delete databases storing U.S. government information.

About 1,300 participants from around the world dealt with the complicated and multi-faceted threats that have been seen in recent global conflicts.

The private, for-profit University of Phoenix is the latest school to disclose that it suffered a data breach due to a vulnerability in Oracle's E-Business Suite.

The cameras, made by the police technology juggernaut Axon Enterprise, were deployed on a trial basis by as many as 50 officers on Wednesday, according to local news reports.