Cybersecurity
Chinese National Extradited to US Over Cyberespionage
A Chinese national accused of carrying out cyberespionage operations for China's intelligence services has been extradited from Italy to the United States to fa
#cybersecurity
87 articles
Cybersecurity
Social Media Scams Cost Americans Over $2.1B in 2025
The U.S. Federal Trade Commission (FTC) warned of a massive increase in losses from social media scams since 2020, exceeding $2.1 billion in 2025. [...]
Cybersecurity
New LOTUSLITE Malware Variant Targets Indian Banks
Cybersecurity researchers have discovered a new variant of a known malware called LOTUSLITE that's distributed via a theme related to India's banking sector. "T
Cybersecurity
Proactive Threat Detection: Catching Cyberattacks Early
On Thursday, April 30 at 2:00 PM ET, BleepingComputer will host a live webinar with threat intelligence company Flare and threat intelligence researcher Tammy H
Cybersecurity
Ransomware Gang Deploys Proxy Malware to 1,570+ Victims
Threat actors associated with The Gentlemen ransomware‑as‑a‑service (RaaS) operation have been observed attempting to deploy a known proxy malware called System
Cybersecurity
Medtronic Confirms Major Security Breach Affecting Millions
Medical device giant Medtronic disclosed last week that hackers breached its network and accessed data in "certain corporate IT systems." [...]
Cybersecurity
ADT Data Breach Compromises 5.5 Million Customer Records
The ShinyHunters extortion group stole the personal information of 5.5 million individuals after breaching the systems of home security giant ADT earlier this m
Science & Tech
European Police Target 75,000 DDoS Attackers in Coordinated Crackdown
Europol coordinated an operation against for-hire distributed denial-of-service (DDoS) services, including the arrest of four people and the takedown of 53 doma
Cybersecurity
Stolen Credentials: Why Attackers Skip Exploits
The cybersecurity industry has spent the last several years chasing sophisticated threats like zero-days, supply chain compromises, and AI-generated exploits. H
Cybersecurity
Itron Reports Unauthorized Access to Internal IT Systems
Itron, Inc. has disclosed, via an 8-K filing with the U.S. Securities and Exchange Commission (SEC), a cybersecurity incident in which an unauthorized third par
AI & ML
How AI and Human Experts Are Transforming Red Team Security Testing
Advancing red teaming with people and AI
Cybersecurity
CISA Adds 8 Critical Exploited Vulnerabilities to KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added eight new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog,
Science & Tech
Firefox 150 Audit Reveals 271 Security Flaws Using AI
CTO says new AI model is "every bit as capable" as world's best security researchers.
Cybersecurity
DORA's Article 9: Why Credential Management Is Now EU Financial Law
Article 9 of DORA makes authentication and access control a legal obligation for EU financial entities. Here is what the regulation requires, and what a breach
Cybersecurity
Trigona Ransomware Gang Deploys Custom Tool for Rapid Data Theft
Recently observed Trigona ransomware attacks are using a custom, command-line tool to steal data from compromised environments faster and more efficiently. [...
Cybersecurity
NIST Restructures CVE Database After Vulnerability Submissions Skyrocket
The National Institute of Standards and Technology (NIST) has announced changes to the way it handles cybersecurity vulnerabilities and exposures (CVEs) listed
Cybersecurity
Apache ActiveMQ Flaw Exploited in Wild, Added to CISA Watch List
A recently disclosed high-severity security flaw in Apache ActiveMQ Classic has come under active exploitation in the wild, per the U.S. Cybersecurity and
Cybersecurity
New PowMix Botnet Actively Targeting Czech Workers
Cybersecurity researchers have warned of an active malicious campaign that's targeting the workforce in the Czech Republic with a previously undocumented botnet
Cybersecurity
UK Cyber Officials Alert: Chinese Hackers Using Device Networks
The United Kingdom's National Cyber Security Centre (NCSC-UK) and international partners warned that China-nexus hackers are increasingly using large-scale prox
Science & Tech
AES-128 Encryption Remains Viable for Quantum Computing Era
A stubborn misconception is hampering the already hard work of quantum readiness.
Cybersecurity
Rituals Cosmetics Confirms Customer Data Breach
Dutch cosmetics giant Rituals disclosed a data breach after attackers stole the personal information of an undisclosed number of customers from its "My Rituals"
Cybersecurity
n8n Automation Platform Weaponized for Phishing Since October
Threat actors have been observed weaponizing n8n, a popular artificial intelligence (AI) workflow automation platform, to facilitate sophisticated phi
Cybersecurity
OpenAI Launches GPT-5.4-Cyber for Security Teams
OpenAI on Tuesday unveiled GPT-5.4-Cyber, a variant of its latest flagship model, GPT‑5.4, that's specifically optimized for defensive cybersecurity u
Gadgets
Netgear Gets FCC Approval, Dominates US Router Market
The Federal Communications Commission has announced that Netgear has been given conditional approval that effectively exempts it from a previous ban on foreign-
Cybersecurity
GoGra Linux Malware Exploits Microsoft Graph API for Covert Attacks
A Linux variant of the GoGra backdoor uses legitimate Microsoft infrastructure, relying on an Outlook inbox for stealthy payload delivery. [...]
Science & Tech
Sweden Accuses Russian Hackers of Targeting European Infrastructure
Sweden's minister for civil defense said Russian hackers are "now attempting destructive cyber attacks against organizations in Europe."
Science & Tech
Anthropic's Mythos AI Model Raises Security Concerns
Cyberdefenses could be exposed faster than fixes could be deployed.
Cybersecurity
French Government Agency Confirms Data Breach
France Titres, the government agency in France for issuing and managince administrative documents has disclosed a data breach after a threat actor claimed the a
Science & Tech
OpenAI Launches GPT-5.4-Cyber to Strengthen Enterprise Security
OpenAI says its safeguards “sufficiently reduce cyber risk” for now, while GPT-5.4-Cyber is a new cybersecurity-focused model.
Science & Tech
AI Code Review Startup Gitar Launches With $9M Funding
The company uses AI to review code that, more often than not these days, has also been generated by AI.
Cybersecurity
Ransomware Negotiator Admits to Leading BlackCat Attacks
41-year-old Angelo Martino, a former employee of cybersecurity incident response company DigitalMint, has pleaded guilty to targeting U.S. companies in BlackCat
Cybersecurity
AI Model Finds Zero-Days Across All Major Operating Systems
Anthropic restricted its Mythos Preview model last week after it autonomously found and exploited zero-day vulnerabilities in every major operating system and b
Cybersecurity
Congressional Pressure Mounts as CISA Grapples with Major Data Leak
Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after KrebsOnSecurity report
Cybersecurity
North Korean Hackers Blamed for $290M KelpDAO Crypto Heist
State-sponsored North Korean hackers are likely behind the $290 million crypto-heist that impacted the KelpDAO DeFi project on Saturday. [...]
Cybersecurity
Gentlemen Ransomware Gang Deploys SystemBC Botnet in Corporate Attacks
A SystemBC proxy malware botnet of more than 1,570 hosts, believed to be corporate victims, has been discovered following an investigation into a Gentlemen rans
Cybersecurity
Third-Party Vendors: Your Organization's Hidden Security Risk
The next major breach hitting your clients probably won't come from inside their walls. It'll come through a vendor they trust, a SaaS tool their
Cybersecurity
Microsoft Teams Targeted in Enterprise Helpdesk Impersonation Attacks
Microsoft is warning of threat actors increasingly abusing external Microsoft Teams collaboration and relying on legitimate tools for access and lateral movemen
Science & Tech
Tech Giants Race to Quantum-Proof Cryptography
Here's which players are winning the race to transition to post-quantum crypto.
Cybersecurity
Identity Gaps Pose Growing Enterprise Risk as AI Threats Escalate
In the rapid evolution of the 2026 threat landscape, a frustrating paradox has emerged for CISOs and security leaders: Identity programs are matu
Cybersecurity
New LucidRook Malware Targets Taiwan NGOs
A previously undocumented threat cluster dubbed UAT-10362 has been attributed to spear-phishing campaigns targeting Taiwanese non-governmental organization
Cybersecurity
NIST Stops Rating Low-Priority Vulnerabilities Amid Rising Submissions
The National Institute of Standards and Technology will stop assigning severity scores to lower-priority vulnerabilities due to the growing workload from rising
Cybersecurity
Shadow AI: The Enterprise Security Blind Spot
As AI tools become more accessible, employees are adopting them without formal approval from IT and security teams. While these tools may boost produc
Cybersecurity
Apple's Account Alerts Weaponized in iPhone Phishing Campaign
Apple account change notifications are being abused to send fake iPhone purchase phishing scams within legitimate emails sent from Apple's servers, increasing l
Cybersecurity
The Real Cost of Repeated Credential Breaches
When talking about credential security, the focus usually lands on breach prevention. This makes sense when IBM’s 2025 Cost of a Data Breach Repo
Cybersecurity
Enterprise Identity Management Faces Critical Visibility Gap
The Fragmented State of Modern Enterprise Identity Enterprise IAM is approaching a breaking point. As organizations scale, identity becomes increasing
Cybersecurity
Ransomware Gangs Exploit Vulnerable Drivers to Disable EDR Tools
Threat actors associated with Qilin and Warlock ransomware operations have been observed using the bring your own vulnerable driver (BY
AI & ML
How AI Safety Teams Combat Malicious AI Usage
Our latest report featuring case studies of how we’re detecting and preventing malicious uses of AI.
AI & ML
Tech Industry Unites to Combat Malicious AI Applications
The technology sector is intensifying efforts to prevent artificial intelligence systems from being weaponized for harmful purposes. Major stakeholders across t
Cybersecurity
MSPs Face Growing Pressure as Cyberattacks Outpace Defenses
Cyberattacks are evolving faster than many MSP and corporate defenses can keep up, with phishing driving much of today's cybercrime. Join our upcoming webinar t
Cybersecurity
Chaos Malware Variant Now Targets Misconfigured Cloud Systems
Cybersecurity researchers have flagged a new variant ofmalware called Chaosthat'scapable of hitting misconfigured cloud deployments, marking an e