BlackSanta EDR-Killer Targets HR Teams in CV-Themed Campaign
BlackSanta malware targets HR staff with fake resumes, kills EDR and steals system data
Information Security Magazine
Researchers Discover Major Security Gaps in LLM Guardrails
2 months 2 weeks ago
Palo Alto Networks’ Unit 42 has developed a successful attack to bypass safety guardrails in popular generative AI tools
Cyber-Attacks on UK Firms Increase at Four Times Global Rate
2 months 2 weeks ago
Check Point data shows attack volumes are growing much faster in the UK than worldwide
Microsoft Fixes Two Publicly Disclosed Zero-Days
2 months 2 weeks ago
March Patch Tuesday sees Microsoft release updates for 79 flaws
OpenAI's Promptfoo Deal Plugs Agentic AI Testing Gap
2 months 2 weeks ago
OpenAI’s latest acquisition addresses a security need Jamieson O’Reilly, security advisor at OpenClaw, raised during an exclusive interview with Infosecurity
Only 24% Of organizations Test Identity Recovery Every Six Months
2 months 2 weeks ago
Only 24% of organizations test identity disaster recovery plans every 6 months, Quest Software said
Cloud Attackers Now Prefer Vulnerability Exploits Over Credentials, Google Cloud Finds
2 months 2 weeks ago
Google Cloud report details a sharp rise in attackers exploiting software vulnerabilities, including React2Shell
Ericsson Breach Exposes Data of 15k Employees and Customers
2 months 2 weeks ago
Ericsson data breach affects 15k employees/customers after third-party service provider compromise
Russian Hackers Target WhatsApp and Signal Accounts of Global Military and Government Officials
2 months 2 weeks ago
Dutch intelligence reveals Russian state hackers are trying to hijack the Signal and WhatsApp accounts of key targets
ShinyHunters Targets Hundreds of Websites in New Salesforce Campaign
2 months 2 weeks ago
Prolific ShinyHunters group claims to have stolen data from nearly 400 websites in Experience Cloud attacks
Threat Actor Exploits Flaws and Uses Elastic Cloud SIEM to Manage Stolen Data
2 months 2 weeks ago
Huntress researchers uncover campaign exploiting vulnerabilities to steal data using Elastic Cloud as a data hub
Trump Administration Unveils New Cyber Strategy for America
2 months 2 weeks ago
US national cyber strategy focuses on stronger defenses, countering threats, fostering innovation
UK Launches New Crackdown Unit to Tackle Cyber-Fraud at the Source
2 months 2 weeks ago
New UK Online Crime Centre will combine expertise from a range of sources to takedown online channels cyber-scammers rely on
AI Security Startups Dominate New Cyber Innovation Awards
2 months 2 weeks ago
Over one in five winners of IT-Harvest’s 2026 Cyber 150 are AI security companies
TriZetto Provider Solutions Breach Hits 3.4 Million Patients
2 months 2 weeks ago
Billing services provider TriZetto Provider Solutions has begun notifying millions of patients about a data breach
Ghanaian Pleads Guilty to Role in $100m Romance Scam
2 months 2 weeks ago
Derrick Van Yeboah admitted he stole over $10m in romance scams as part of crime gang
Iran's MuddyWater Hackers Hit US Firms with New 'Dindoor' Backdoor
2 months 2 weeks ago
A bank, an airport, a non-profit and the Israeli branch of a US software company were among the targets of this new MuddyWater campaign
Zero‑Day Attacks on Enterprise Software Reach Record High, Google Warns
2 months 2 weeks ago
Almost a quarter of the zero days detected by Google in 2025 targeted security and networking appliances
AI-Driven Insider Risk Now a “Critical Business Threat,” Report Warns
2 months 3 weeks ago
Malicious insiders are using misusing AI for nefarious gain, while employees cutting corners also creates risk, warns Mimecast
ContextCrush Flaw Exposes AI Development Tools to Attacks
2 months 3 weeks ago
Critical flaw "ContextCrush" in Context7 MCP Server could allow malicious instructions into AI tools
Checked
5 hours 5 minutes ago