Chinese-Linked Hackers Exploit Windows Flaw to Spy on Belgian and Hungarian Diplomats
A new UNC6384 campaign highlights the threat actor’s growing sophistication and geographic expansion
Information Security Magazine
Facial Recognition Firm Clearview AI Hit with Criminal Complaint in Austria
1 month ago
Clearview AI faces a criminal complaint in Austria for allegedly ignoring EU data protection rulings
Critical Flaws Found in Elementor King Addons Affect 10,000 Sites
1 month ago
The King Addons for Elementor plugin contains two flaws allowing unauthenticated file uploads and privilege escalation
Threat Actors Utilize AdaptixC2 for Malicious Payload Delivery
1 month ago
Cybercriminals are abusing AdaptixC2, a legitimate emulation framework, in ransomware campaigns
Shadow AI: One In Four Employees Use Unapproved AI Tools, Research Finds
1 month ago
Over a quarter of employees work with AI tools that had not been authorized by their company
Proton Claims 300 Million Records Compromised So Far This Year
1 month ago
A new dark web analysis reveals more than 300 million records have been breached in 2025 to date
Defense Contractor Boss Pleads Guilty to Selling Zero-Day Exploits to Russia
1 month ago
The former general manager of defense contractor Trenchant has admitted selling zero-days to Russian broker
Chrome to Make HTTPS Mandatory by Default in 2026
1 month 1 week ago
Google Chrome will enhance security with enforced HTTPS connections from version 154, set for release in October 2026
Npm Malware Uses Invisible Dependencies to Infect Dozens of Packages
1 month 1 week ago
The ongoing ‘PhantomRaven’ malicious campaign has infected 126 npm packages to date, representing 86,000 downloads
PHP Servers and IoT Devices Face Growing Cyber-Attack Risks
1 month 1 week ago
A rise in attacks on PHP servers, IoT devices and cloud gateways is linked to botnets exploiting flaws, according to new research published by Qualys
New Atroposia RAT Surfaces on Dark Web
1 month 1 week ago
Atroposia is a newly discovered modular RAT that uses encrypted channels and advanced theft capabilities to target credentials and crypto wallets
Open Source “b3” Benchmark to Boost LLM Security for Agents
1 month 1 week ago
The backbone breaker benchmark (b3) has been launched to enhance the security of LLMs within AI agents
BSI Warns of Looming AI Governance Crisis
1 month 1 week ago
The British Standards Institution claims business leaders aren’t focused enough on managing AI risk
Investment Scams Spread Across Asia With International Reach
1 month 1 week ago
A surge in fake investment platforms targeting cryptocurrency and forex markets has been driving a new wave of financial crime in Asia
Chrome Zero-Day Actively Exploited in Attacks by Mem3nt0 mori
1 month 1 week ago
A zero-day flaw in Chrome has been exploited by Mem3nt0 mori in Operation ForumTroll as part of a targeted espionage campaign
Nation-State Cyber Ecosystems Weakened by Sanctions, Report Reveals
1 month 1 week ago
Cyber-related economic sanctions can alter adversary behavior, forcing underground networks to distance themselves from named actors
A Quarter of Scam Victims Have Considered Self-Harm
1 month 1 week ago
ITRC report charts shocking rise of identity fraud victims driven to thoughts of self-harm
Actively Exploited WSUS Bug Added to CISA KEV List
1 month 1 week ago
Sysadmins are urged to patch WSUS vulnerability CVE-2025-59287 as soon as possible, with federal agencies required to update by November 14
Qilin Ransomware Group Publishes Over 40 Cases Monthly
1 month 1 week ago
Qilin ransomware activity has surged in late 2025, threatening data leaks via double extortion tactics
Europol Warns of Rising Threat From Caller ID Spoofing Attacks
1 month 1 week ago
Europol called for action against caller ID spoofing, linking attacks to significant online fraud
Checked
51 minutes 34 seconds ago