Flux RSS

Prolific ShinyHunters group claims to have stolen data from nearly 400 websites in Experience Cloud attacks

Huntress researchers uncover campaign exploiting vulnerabilities to steal data using Elastic Cloud as a data hub

US national cyber strategy focuses on stronger defenses, countering threats, fostering innovation

New UK Online Crime Centre will combine expertise from a range of sources to takedown online channels cyber-scammers rely on

Over one in five winners of IT-Harvest’s 2026 Cyber 150 are AI security companies

Billing services provider TriZetto Provider Solutions has begun notifying millions of patients about a data breach

Derrick Van Yeboah admitted he stole over $10m in romance scams as part of crime gang

AI-based assistants or "agents" -- autonomous programs that have access to the user's computer, files, online services and can automate virtually any task -- are growing in popularity with developers and IT workers. But as so many eyebrow-raising headlines over the past few weeks have shown, these powerful and assertive new tools are rapidly shifting the security priorities for organizations, while blurring the lines between data and code, trusted co-worker and insider threat, ninja hacker and novice code jockey.

A bank, an airport, a non-profit and the Israeli branch of a US software company were among the targets of this new MuddyWater campaign

Almost a quarter of the zero days detected by Google in 2025 targeted security and networking appliances

Malicious insiders are using misusing AI for nefarious gain, while employees cutting corners also creates risk, warns Mimecast

Critical flaw "ContextCrush" in Context7 MCP Server could allow malicious instructions into AI tools

Exploit kit "Coruna" targets iPhones running iOS 13.0 to 17.2.1, focusing on financial data theft

Ox Security warns that Mail2Shell could enable threat actors to hijack FreeScout systems without user interaction

Two of the 48 Cisco vulnerabilities, affecting Secure Firewall Management Center, are maximum-severity flaws

A global operation has resulted in the takedown of popular cybercrime forum LeakBase

A coalition of seven Western nations has launched guidelines to help integrate security-by-design principles into future 6G standards

Law enforcers and industry partners have taken down notorious phishing-as-a-service platform Tycoon2FA

Increased attempts to compromise surveillance cameras linked to Iran during Middle East conflict

Malware campaign uses Ukrainian email service for credibility, deploying "BadPaw" to execute attacks