Breaking News

NSO Group must pay WhatsApp over $167M in damages for attacks on its usersNSO Group must pay WhatsApp over $167M in damages for attacks on its users

NSO Group must pay WhatsApp over $167M in damages for attacks on its users

NSO Group must pay WhatsApp over $167M in damages for a 2019 hack targeting 1,400+ users, per U.S. jury ruling…

2 weeks ago
U.S. CISA adds FreeType flaw to its Known Exploited Vulnerabilities catalogU.S. CISA adds FreeType flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds FreeType flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds FreeType flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure…

2 weeks ago
Samsung MagicINFO flaw exploited days after PoC exploit publicationSamsung MagicINFO flaw exploited days after PoC exploit publication

Samsung MagicINFO flaw exploited days after PoC exploit publication

Threat actors started exploiting a vulnerability in Samsung MagicINFO only days after a PoC exploit was published. Arctic Wolf researchers…

2 weeks ago
Experts warn of a second wave of attacks targeting SAP NetWeaver bug CVE-2025-31324<gwmw style="display:none;"></gwmw>Experts warn of a second wave of attacks targeting SAP NetWeaver bug CVE-2025-31324<gwmw style="display:none;"></gwmw>

Experts warn of a second wave of attacks targeting SAP NetWeaver bug CVE-2025-31324<gwmw style="display:none;"></gwmw>

Threat actors launch second wave of attacks on SAP NetWeaver, exploiting webshells from a recent zero-day vulnerability. In April, ReliaQuest…

2 weeks ago
U.S. CISA adds Langflow flaw to its Known Exploited Vulnerabilities catalogU.S. CISA adds Langflow flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Langflow flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Langflow flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and…

2 weeks ago
Google fixed actively exploited Android flaw CVE-2025-27363Google fixed actively exploited Android flaw CVE-2025-27363

Google fixed actively exploited Android flaw CVE-2025-27363

Google addressed 46 Android security vulnerabilities, including one issue that has been exploited in attacks in the wild. Google's monthly…

2 weeks ago
New ‘Bring Your Own Installer (BYOI)’ technique allows to bypass EDRNew ‘Bring Your Own Installer (BYOI)’ technique allows to bypass EDR

New ‘Bring Your Own Installer (BYOI)’ technique allows to bypass EDR

A new BYOI technique lets attackers bypass SentinelOne EDR, disable protection, and deploy Babuk ransomware by exploiting the agent upgrade…

2 weeks ago
Smishing on a Massive Scale: ‘Panda Shop’ Chinese Carding SyndicateSmishing on a Massive Scale: ‘Panda Shop’ Chinese Carding Syndicate

Smishing on a Massive Scale: ‘Panda Shop’ Chinese Carding Syndicate

Resecurity found a new smishing kit called 'Panda Shop,' mimicking Smishing Triad tactics with improved features and new templates. Resecurity…

2 weeks ago
Kelly Benefits December data breach impacted over 400,000 individualsKelly Benefits December data breach impacted over 400,000 individuals

Kelly Benefits December data breach impacted over 400,000 individuals

Kelly Benefits has determined that the impact of the recently disclosed data breach is much bigger than initially believed. Benefits…

3 weeks ago
A hacker stole data from TeleMessage, the firm that sells modified versions of Signal to the U.S. govA hacker stole data from TeleMessage, the firm that sells modified versions of Signal to the U.S. gov

A hacker stole data from TeleMessage, the firm that sells modified versions of Signal to the U.S. gov

A hacker stole data from TeleMessage, exposing messages from its modified Signal, WhatsApp, and other apps sold to the U.S.…

3 weeks ago
Show more Posts
Show previous Posts