The Record

Researchers have confirmed more than 30 affected organizations tied to the React2Shell bug that emerged last week.

In a case that affected 13 companies, including U.S. government contractors, a Maryland man was sentenced to 15 months in prison for allowing North Korean nationals to use his identity.

The bug, tagged as CVE-2025-55182 and referred to colloquially as React2Shell, was reported to Meta by researcher Lachlan Davidson on November 29 and publicly disclosed on Wednesday, when a fix was rolled out.

President Donald Trump's new 33-page national security strategy sets cybersecurity within the broader context of protecting critical infrastructure and managing regional affairs in the Western Hemisphere.

X's paid "blue checkmark" system for verifying users and other aspects of the platform violate the EU's Digital Services Act, the European Commission said in fining the company €120 million ($139 million).

The Cybersecurity and Infrastructure Security Agency (CISA), NSA and Canadian Centre for Cyber Security published an advisory on Thursday outlining the BRICKSTORM malware based off an analysis of eight samples taken from victim organizations.

The journalism nonprofit Reporters Without Borders and another organization reported phishing attempts to cybersecurity researchers, who tied them to a Russia-linked group known as Callisto, ColdRiver or Star Blizzard.

Police have used facial recognition in Britain since 2017 and controversy has mounted as more aggressive deployments have been undertaken, including live facial recognition which involves processing real-time video footage of people passing a camera.

Twin brothers with a history of cybercrimes have been arrested on charges of abusing their roles as federal contractors to delete databases storing U.S. government information.

About 1,300 participants from around the world dealt with the complicated and multi-faceted threats that have been seen in recent global conflicts.

The private, for-profit University of Phoenix is the latest school to disclose that it suffered a data breach due to a vulnerability in Oracle's E-Business Suite.

The cameras, made by the police technology juggernaut Axon Enterprise, were deployed on a trial basis by as many as 50 officers on Wednesday, according to local news reports.

Mobile phone makers will no longer be required to load the Indian government's Sanchar Saathi app onto new devices after the initial announcement prompted pushback from companies and privacy groups.

Askul said Wednesday that corporate customers can now purchase a limited range of products on its platform and the company plans to gradually add more items as it restores its systems.

The FBI said several victims used the domain and told agents that they were shown lucrative returns on what they thought were legitimate investments.

The ruling stems from a 2018 case in Romania involving an online marketplace which published a fake ad featuring personal information belonging to a woman the ad placer said was a prostitute.

Active between September 2024 and March 2025, the operation primarily targeted organizations in Israel’s technology, engineering, local government, educational and manufacturing sectors.

Telecom Minister Jyotiraditya Scindia said Tuesday the system was optional and denied the app could be used for monitoring

Yonhap News Agency reported on Friday that South Korean government officials are involved in the investigation surrounding $30 million worth of cryptocurrency that was stolen from Upbit on Wednesday evening.

Wisconsin-based Illuminate Education will implement a data security program and delete unnecessary data under an agreement with the Federal Trade Commission prompted by a 2021 breach of the company's network.