LATEST ARTICLES
-
Storm-0501 hackers shift to ransomware attacks in the cloud
Microsoft warns that a threat actor tracked as Storm-0501 has evolved its operations, shifting away from encrypting devices with ransomware to focusing on cloud-based encryption, data theft, and extortion.
- August 27, 2025
- 06:38 PM
0
-
Experimental PromptLock ransomware uses AI to encrypt, steal data
Threat researchers discovered the first AI-powered ransomware, called PromptLock, that uses Lua scripts to steal and encrypt data on Windows, macOS, and Linux systems.
- August 27, 2025
- 04:47 PM
- 0
-
New Whitepaper: The Evolution of Phishing Attacks
Modern phishing has changed a lot in the past decade or so. The most sophisticated attacks — the ones that usually hit the headlines in the form of major breaches — come with a host of anti-analysis and obfuscation techniques making them increasingly difficult to detect.
Get the whitepaper to learn about modern phishing detection evasion techniques and how to counteract them.
-
FreePBX servers hacked via zero-day, emergency fix released
The Sangoma FreePBX Security Team is warning about an actively exploited FreePBX zero-day vulnerability that impacts systems with the Administrator Control Panel (ACP) is exposed to the internet.
- August 27, 2025
- 03:36 PM
- 0
-
IT system supplier cyberattack impacts 200 municipalities in Sweden
A cyberattack on Miljödata, an IT systems supplier for roughly 80% of Sweden's municipal systems, has caused accessibility problems in more than 200 regions of the country.
- August 27, 2025
- 02:23 PM
- 0
-
Get defensive cybersecurity training in 12 courses for $39.99 in this deal
If you've been thinking about adding "ethical hacker" or "cybersecurity analyst" to your resume, the 2025 Complete Defensive Cyber Security Bundle is a solid way to start. Right now it's just $39.99 (MSRP $240)—an 83% discount. This price includes lifelong access to 12 self-paced courses.
- August 27, 2025
- 02:06 PM
- 0
-
Global Salt Typhoon hacking campaigns linked to Chinese tech firms
The U.S. National Security Agency (NSA), the UK's National Cyber Security Centre (NCSC), and partners from over a dozen countries have linked the Salt Typhoon global hacking campaigns to three China-based technology firms.
- August 27, 2025
- 01:34 PM
- 0
-
Over 28,000 Citrix devices vulnerable to new exploited RCE flaw
More than 28,200 Citrix instances are vulnerable to a critical remote code execution vulnerability tracked as CVE-2025-7775 that is already being exploited in the wild.
- August 27, 2025
- 12:48 PM
- 0
-
Why zero trust is never 'done' and is an ever-evolving process
Zero trust isn't a project you finish—it's a cycle that keeps evolving. From supply chain exploits to policy drift, resilience requires continuous testing and adaptation. Learn how Specops Software supports this journey with tools that make it easier.
- August 27, 2025
- 10:15 AM
- 0
-
Healthcare Services Group data breach impacts 624,000 people
The Healthcare Services Group (HSGI) is alerting more than 600,000 individuals that their personal information was exposed in a security breach last year.
- August 27, 2025
- 09:27 AM
- 0
-
Surfshark VPN offers unlimited devices and privacy for less than $68
A reliable VPN is still one of the most essential tools for protecting your online activity. For a limited time, you can get a three-year subscription to Surfshark VPN for only $67.19 (reg. $430) when you use promo code SAVE20 at checkout. That's less than $2 per month for secure, private internet access across all your devices.
- August 27, 2025
- 07:09 AM
- 0
-
.jpg)
Google to verify all Android devs to protect users from malware
Google is introducing a new defense for Android called 'Developer Verification' to block malware installations from sideloaded apps sourced from outside the official Google Play app store.
- August 26, 2025
- 06:23 PM
- 0
-
Citrix fixes critical NetScaler RCE flaw exploited in zero-day attacks
Citrix fixed three NetScaler ADC and NetScaler Gateway flaws today, including a critical remote code execution flaw tracked as CVE-2025-7775 that was actively exploited in attacks as a zero-day vulnerability.
- August 26, 2025
- 05:37 PM
- 0
-
Silk Typhoon hackers hijack network captive portals in diplomat attacks
State-sponsored hackers linked to the Mustang Panda activity cluster targeted diplomats by hijacking web traffic to redirect to a malware serving website.
- August 26, 2025
- 05:33 PM
- 0
-
Salesloft breached to steal OAuth tokens for Salesforce data-theft attacks
Hackers breached sales automation platform Salesloft to steal OAuth and refresh tokens from its Drift chat agent integration with Salesforce to pivot to customer environments and exfiltrate data. The ShinyHunters extortion group claims responsibility for these additional Salesforce attacks.
- August 26, 2025
- 03:12 PM
- 0
-
Nevada closes state offices as cyberattack disrupts IT systems
Nevada remains two days into a cyberattack that began early Sunday, disrupting government websites, phone systems, and online platforms, and forcing all state offices to close on Monday.
- August 26, 2025
- 01:33 PM
- 0
-
CISA warns of actively exploited Git code execution flaw
The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning of hackers exploiting an arbitrary code execution flaw in the Git distributed version control system.
- August 26, 2025
- 10:57 AM
- 0
No comments:
Post a Comment