ChatGPT Security Issue Enabled Data Theft via Single Prompt
OpenAI has patched vulnerability, which Check Point said was because of a DNS loophole
Information Security Magazine
TeamPCP Explores Ways to Exploit Stolen Supply Chain Secrets
6 hours 28 minutes ago
TeamPCP is exploring ways to monetize the secrets harvested during supply chain attacks, with identified ties to the Lapsus$ and Vect ransomware gangs
Employee Data Breaches Surge to Seven-Year High
8 hours 42 minutes ago
Analysis from law firm Nockolds suggests non-cyber incidents are driving up employee data breaches
NCSC Urges Immediate Patching of F5 BIG-IP Bug
9 hours 58 minutes ago
The National Cyber Security Centre wants UK firms to patch CVE-2025-53521
Cybercriminals Exploit Tax Season With New Phishing Tactics
1 day 3 hours ago
Tax-season phishing floods deliver RMM malware, credential theft, BEC and tax-form scams
Lloyds IT Glitch Exposed Data of Nearly 500,000 Banking Customers
1 day 4 hours ago
Lloyds app glitch exposed up to 447,936 customers’ transactions and personal data during update
DeepLoad Malware Combines ClickFix With AI-Generated Code to Avoid Detection
1 day 6 hours ago
Researchers at ReliaQuest warn of persistent malware campaign targeting enterprise credentials
Critical Citrix NetScaler Vulnerability Exploited in the Wild
1 day 7 hours ago
Researchers from watchTowr and Defused have found evidence that attackers are actively exploiting CVE-2026-3055, a critical NetScaler vulnerability
ICO Fines UK Nuisance Call Scammers £100,000
1 day 9 hours ago
The UK Information Commissioner’s Office has handed a £100,000 fine to Birmingham-based TMAC
European Commission Confirms Cloud Data Breach
1 day 10 hours ago
The European Commission has revealed details of a data breach impacting its AWS infrastructure
New Wave of AiTM Phishing Targets TikTok for Business
4 days 2 hours ago
Push Security has uncovered a new AiTM phishing campaign targeting TikTok for Business accounts using Google and TikTok themed login pages
TeamPCP Targets Telnyx Package in Latest PyPI Software Supply Chain Attack
4 days 3 hours ago
Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware
Quantum Computing Threat to Encryption Is Closer Than Expected, Warns Google
4 days 6 hours ago
‘Q-Day’ and the cybersecurity problems it brings could come as early as 2029 as Google accelerates its post-quantum cryptography migration
UK Cracks Down on Chinese Crypto Marketplace for Funding Southeast Asia Scam Hubs
4 days 6 hours ago
The UK government has sanctioned Xinbi, described as “the second-largest illicit online marketplace ever”
Security Researchers Sound the Alarm on Vulnerabilities in AI-Generated Code
5 days 2 hours ago
Security researchers from Georgia Tech have observed a surge in reported CVEs for which the flaw was introduced by AI-generated code
Attackers Rapidly Weaponize Critical Oracle WebLogic RCE, Honeypot Study Finds
5 days 2 hours ago
Attackers rapidly exploited a critical Oracle WebLogic RCE flaw the same day exploit code was released, according to a CloudSEK honeypot study
EtherRAT Techniques Bypass Security Via Ethereum Smart Contracts
5 days 3 hours ago
EtherRAT hides C2 in Ethereum smart contracts via EtherHiding, steals wallets and credentials
AI Becomes the Top Cybersecurity Priority for Defenders as Criminals Exploit It, PwC Warns
5 days 5 hours ago
PwC Annual Threat Dynamics report says AI-threats are the biggest concern of clients
OpenAI Expands Bug Bounty to Cover AI Abuse and 'Safety' Concerns
5 days 6 hours ago
OpenAI’s Safety Bug Bounty program seeks to address AI safety vulnerabilities beyond traditional security flaws
Iran-Linked Pay2Key Ransomware Group Re-Emerges
5 days 7 hours ago
Halcyon and Beazley Security track the return of Iranian ransomware group Pay2Key
Checked
43 minutes 42 seconds ago