Cyble threat intelligence researchers identified a phishing campaign aimed at Hungarian government targets that further investigation revealed was connected to wider global attack campaigns targeting the banking and logistics sectors. The initial phishing link discovered by the researchers led to a fake login page for show more ...
According to Juniper Research data, global e-commerce turnover surpassed $7 trillion in 2024, and is projected to grow by 1.5 times over the next five years. But cybercriminal interest in this field is growing even faster. Last year, losses from fraud exceeded $44 billion — and theyre expected to reach US$107 show more ...
Researchers observed North Korean threat actors targeting cryptocurrency and Web3 platforms on Telegram using malicious Zoom meeting requests.
A color picker for Google's browser with more than 100,000 downloads hijacks sessions every time a user navigates to a new webpage and also redirects them to malicious sites.
The outage began shortly before the July 4 holiday weekend and caused disruptions for customer ordering and other services provided by the IT distributor.
The new ransomware strain's aggressive multithreading and cross-platform capabilities make it a potent threat to enterprise environments.
The announcement comes just months after security researchers observed that the group was making the transition to rebrand to World Leaks, a data theft outfit.
The developers behind a custom firmware used to convert consumer drones for military use in Ukraine have reported a cyberattack disrupting the system that distributes the software.
Ingram Micro published a statement on Saturday saying it discovered “ransomware on certain of its internal systems,” which it immediately took offline.
The outages in Russia's second largest city are the latest in a series of shutdowns that may be linked to the Kremlin’s efforts to protect critical infrastructure from Ukrainian drone attacks.
Stephen Bonner, a top official at Britain's Information Commissioner’s Office (ICO), is set to join TikTok later this year, a move drawing criticism as an example of the "revolving door" between regulators and the industries they oversee.
An investigation revealed that hackers had access to the utility's critical systems, allowing them to steal sensitive information like driver's license numbers, Canadian Social Insurance information and bank account details.
Organizations on multiple continents — particularly in the health and tech sectors — have been breached by a ransomware group calling itself Bert, according to researchers at Trend Micro.
Police in Brazil arrested an employee of C&M Software, who allegedly told them he had sold his login credentials to the hackers behind a massive theft via the PIX instant payment system.
A hacking group with ties other than Pakistan has been found targeting Indian government organizations with a modified variant of a remote access trojan (RAT) called DRAT. The activity has been attributed by Recorded Future's Insikt Group to a threat actor tracked as TAG-140, which it said overlaps with SideCopy, an adversarial collective assessed to be an operational sub-cluster within
Everything feels secure—until one small thing slips through. Even strong systems can break if a simple check is missed or a trusted tool is misused. Most threats don’t start with alarms—they sneak in through the little things we overlook. A tiny bug, a reused password, a quiet connection—that’s all it takes. Staying safe isn’t just about reacting fast. It’s about catching these early signs
If you didn't hear about Iranian hackers breaching US water facilities, it's because they only managed to control a single pressure station serving 7,000 people. What made this attack noteworthy wasn't its scale, but how easily the hackers gained access — by simply using the manufacturer's default password "1111." This narrow escape prompted CISA to urge manufacturers to
Cybersecurity researchers have disclosed a malicious campaign that leverages search engine optimization (SEO) poisoning techniques to deliver a known malware loader called Oyster (aka Broomstick or CleanUpLoader). The malvertising activity, per Arctic Wolf, promotes fake websites hosting trojanized versions of legitimate tools like PuTTY and WinSCP, aiming to trick software professionals
This month could barely have started any worse for some financial institutions in Brazil. Approximately US $140 million was stolen from the reserve accounts of six financial institutions after a cyber attack hit a service provider. Read more in my article on the Hot for Security blog.
Source: sec.cloudapps.cisco.com – Author: . Cisco Adaptive Security Appliance Software, Firepower Threat Defense Software, IOS Software, and IOS XE Software IKEv2 Denial of Service Vulnerability High CVE-2025-20182 CWE-787 Download CSAF Email Summary A vulnerability in the Internet Key Exchange version 2 show more ...
Source: sec.cloudapps.cisco.com – Author: . Cisco IOS XE Software Model-Driven Programmability Authorization Bypass Vulnerability Medium CVE-2025-20214 CWE-639 Download CSAF Email Summary A vulnerability in the Network Configuration Access Control Module (NACM) of Cisco IOS XE Software could allow an show more ...
Source: securityaffairs.com – Author: Pierluigi Paganini Hunters International ransomware gang announced its shutdown, citing unspecified “recent developments” and acknowledging its impact. The ransomware group Hunters International announced on its dark web site that it is shutting down, citing “recent show more ...
Source: securityaffairs.com – Author: Pierluigi Paganini We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept All”, you consent to the use of ALL the cookies. However, you may visit “Cookie Settings” to show more ...
Source: securityaffairs.com – Author: Pierluigi Paganini A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. show more ...
Source: securityboulevard.com – Author: Jeffrey Burt Five months after sanction Zservers, the U.S. Treasury Department targeted Aeza Group, another Russia-based bulletproof hosting services provider for allowing threat actors to host ransomware and other campaigns on its infrastructure, which is resistant to show more ...
Source: www.securityweek.com – Author: Eduard Kovacs More than forty cybersecurity merger and acquisition (M&A) deals were announced in June 2025. An analysis conducted by SecurityWeek shows that 405 cybersecurity-related mergers and acquisitions were announced in 2024. Check out the detailed report. show more ...
Source: www.infosecurity-magazine.com – Author: Australian airline Qantas has revealed it has been contacted by a “potential cybercriminal” in relation to a massive breach of customer data. Qantas is currently working to validate the authenticity of the purported cybercriminal. No details have been provided show more ...
Source: www.infosecurity-magazine.com – Author: Security researchers have warned bargain-hunting shoppers to be on the lookout for scams this Amazon Prime Day, after discovering a large number of lookalike domains. Check Point said that, in June alone, it recorded more than 1000 domains with names resembling show more ...
Source: www.infosecurity-magazine.com – Author: One of the world’s largest IT distributors has revealed it is battling to recover from a recent ransomware breach. California-based Ingram Micro issued a brief statement over the weekend confirming “an ongoing system outage.” It said: “Ingram Micro show more ...
Source: thehackernews.com – Author: . A hacking group with ties other than Pakistan has been found targeting Indian government organizations with a modified variant of a remote access trojan (RAT) called DRAT. The activity has been attributed by Recorded Future’s Insikt Group to a threat actor tracked as show more ...
Source: www.nist.gov – Author: Michael Prebil. A lot has changed in America’s cybersecurity workforce development ecosystem since 2016: employment in cybersecurity occupations has grown by more than 300,000[1]; the number of information security degrees awarded annually has more than tripled to nearly show more ...
Source: www.mcafee.com – Author: Amy Bunn. “My phone’s been hacked!” These are words you never want to hear or say. Ever. You are not alone in this sentiment. Our phones have become the central hub of our lives, storing everything from personal and financial information, access to payment apps, files, show more ...
