Latest

Get this as an RSS feed

  • [TroyHunt] Weekly Update 457 - 12 hours ago
  • [HackerNews] Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages - 20 hours ago
  • [SecurityWeek] Aflac Finds Suspicious Activity on US Network That May Impact Social Security Numbers, Other Data - 21 hours ago
  • [RegisterSec] Netflix, Apple, BofA websites hijacked with fake help-desk numbers - 1 day ago
  • [RegisterSoftware] New GitHub Copilot limits push AI users to pricier tiers - 1 day ago
  • [RegisterSoftware] US patent office wants an AI to scan for prior art, but doesn’t want to pay for it - 1 day ago
  • [RegisterSec] Looks like Aflac is the latest insurance giant snagged in Scattered Spider’s web - 1 day ago
  • [BleepingComputer] BitoPro exchange links Lazarus hackers to $11 million crypto heist - 1 day ago
  • [RegisterSoftware] EDB enhances analytics in PostgreSQL with open source add-ons - 1 day ago
  • [RegisterSec] Qilin ransomware top dogs treat their minions to on-call lawyers for fierier negotiations - 1 day ago
  • [CloudFlare] SFO (San Francisco) on 2025-07-02 - 1 day ago
  • [HackerNews] Qilin Ransomware Adds “Call Lawyer” Feature to Pressure Victims for Larger Ransoms - 1 day ago
  • [RegisterSoftware] Xlibre fork lights a fire under long-dormant X.org development - 1 day ago
  • [BleepingComputer] Microsoft investigates OneDrive bug that breaks file search - 1 day ago
  • [GrahamCluley] Krispy Kreme hack exposed sensitive data of over 160,000 people - 1 day ago
  • [BleepingComputer] Cloudflare blocks record 7.3 Tbps DDoS attack against hosting provider - 1 day ago
  • [HackerNews] New Android Malware Surge Hits Devices via Overlays, Virtualization Fraud, and NFC Theft - 1 day ago
  • [BleepingComputer] Aflac discloses breach amidst Scattered Spider insurance attacks - 1 day ago
  • [BleepingComputer] Can users reset their own passwords without sacrificing security? - 1 day ago
  • [SecurityWeek] In Other News: Viasat Hacked by China, Washington Post Cyberattack, Crowhammer - 1 day ago
  • [BleepingComputer] Microsoft to remove legacy drivers from Windows Update for security boost - 1 day ago
  • [SecurityWeek] Record-Breaking 7.3 Tbps DDoS Attack Targets Hosting Provider - 1 day ago
  • [GrahamCluley] Qilin offers “Call a lawyer” button for affiliates attempting to extort ransoms from victims who won’t pay - 1 day ago
  • [IT Governance] The Critical Role of a DPO: Why Outsourcing is the Smart Choice - 1 day ago
  • [RegisterSoftware] Broadcom’s answer to VMware pricing outrage: You’re using it wrong - 1 day ago
  • [RegisterSoftware] Windows 11 migration heats up… on desktops - 1 day ago
  • [HackerNews] Iran’s State TV Hijacked Mid-Broadcast Amid Geopolitical Tensions; $90M Stolen in Crypto Heist - 1 day ago
  • [SecurityWeek] Godfather Android Trojan Creates Sandbox on Infected Devices - 1 day ago
  • [SecurityWeek] Motors Theme Vulnerability Exploited to Hack WordPress Websites - 1 day ago
  • [RegisterSec] Attack on Oxford City Council exposes 21 years of election worker data - 1 day ago
  • [GitHub] Disruption with the GitHub mobile android application - 1 day ago
  • [HackerNews] Massive 7.3 Tbps DDoS Attack Delivers 37.4 TB in 45 Seconds, Targeting Hosting Provider - 1 day ago
  • [HackerNews] 6 Steps to 24/7 In-House SOC Success - 1 day ago
  • [SecurityWeek] FreeType Zero-Day Found by Meta Exploited in Paragon Spyware Attacks - 1 day ago
  • [RegisterSoftware] Deal to ‘save’ UK colleges £45M in Oracle Java licensing fees followed audit requests - 1 day ago
  • [HackerNews] 200+ Trojanized GitHub Repositories Found in Campaign Targeting Gamers and Developers - 1 day ago
  • [CloudFlare] TXL (Berlin) on 2025-06-26 - 1 day ago
  • [SecurityWeek] Cloudflare Tunnels Abused in New Malware Campaign - 1 day ago
  • [SecurityWeek] 161,000 People Impacted by Krispy Kreme Data Breach - 1 day ago
  • [HackerNews] 67 Trojanized GitHub Repositories Found in Campaign Targeting Gamers and Developers - 1 day ago
  • [SecurityWeek] Hackers Access Legacy Systems in Oxford City Council Cyberattack - 2 days ago
  • [RegisterSec] Iran’s internet goes offline for hours amid claims of ‘enemy abuse’ - 3 days ago
  • [DataBreaches] Russian-linked hackers appear to have launched a crippling cyberattack on Western New Mexico University - 1 month ago
  • [DataBreaches] SK Telecom vows to take full responsibility for damage from recent data leak - 1 month ago
  • [HackerNews] Storm-1977 Hits Education Clouds with AzureChecker, Deploys 200+ Crypto Mining Containers - 1 month ago
  • [FullDisclosure] Microsoft “.library-ms” File / NTLM Information Disclosure (Resurrected 2025) - 1 month ago
  • [FullDisclosure] Ruby on Rails Cross-Site Request Forgery - 1 month ago
  • [FullDisclosure] Inedo ProGet Insecure Reflection and CSRF Vulnerabilities - 1 month ago
  • [FullDisclosure] [IWCC 2025] CfP: 14th International Workshop on Cyber Crime - Ghent, Belgium, Aug 11-14, 2025 - 1 month ago
  • [TroyHunt] Weekly Update 449 - 1 month ago
  • [DataBreaches] North Dakota Expands Data Security Requirements and Issues New Licensing Requirements for Brokers - 1 month ago
  • [RegisterSoftware] Build your own antisocial writing rig with DOS and a $2 USB key - 1 month ago
  • [SecurityWeek] Cynomi Raises $37 Million Series B to Expand Its vCISO Platform - 1 month ago
  • [DataBreaches] Oregon court dismisses lawsuit over 2023 MOVEit data breach affecting 3.5 million Oregonians - 1 month ago
  • [DataBreaches] High Court rules landlord entitled to additional £6m indemnity from insurance broker after data breach - 1 month ago
  • [DataBreaches] Oregon DEQ won’t say if ransomware group took employee data in cyberattack - 1 month ago
  • [HackerNews] ToyMaker Uses LAGTOY to Sell Access to CACTUS Ransomware Gangs for Double Extortion - 1 month ago
  • [RegisterSec] Signalgate lessons learned: If creating a culture of security is the goal, America is screwed - 1 month ago
  • [DataBreaches] HHS OCR Settles HIPAA Ransomware Cybersecurity Investigation with Comprehensive Neurology, PC - 1 month ago
  • [RegisterSec] Amid CVE funding fumble, ‘we were mushrooms, kept in the dark,’ says board member - 1 month ago
  • [CloudFlare] Cloudflare Response Truncation - 1 month ago
  • [SecurityWeek] Browser Security Firm SquareX Raises $20 Million - 1 month ago
  • [BleepingComputer] Windows 11’s Recall AI is now rolling out on Copilot+ PCs - 1 month ago
  • [BleepingComputer] Windows 11 KB5055627 update released with 30 new changes, fixes - 1 month ago
  • [BleepingComputer] Craft CMS RCE exploit chain used in zero-day attacks to steal data - 1 month ago
  • [CloudFlare] HKG (Hong Kong) on 2025-04-29 - 1 month ago
  • [RegisterSec] More Ivanti attacks may be on horizon, say experts who are seeing 9x surge in endpoint scans - 1 month ago
  • [CloudFlare] DMM (Dammam) on 2025-04-28 - 1 month ago
  • [CloudFlare] Increased HTTP 500 Errors in TPE & DEL colos - 1 month ago
  • [1Password] 2025-04-28 Events API and Reporting Maintenance - 1 month ago
  • [RegisterSoftware] Oh, cool. Microsoft melts bug that froze Server 2025 Remote Desktop sessions - 1 month ago
  • [RegisterSec] Oh, cool. Microsoft melts bug that froze Server 2025 Remote Desktop sessions - 1 month ago
  • [CloudFlare] DFW (Dallas) on 2025-05-01 - 1 month ago
  • [CloudFlare] AKL (Auckland) on 2025-04-28 - 1 month ago
  • [CloudFlare] MUC (Munich) on 2025-04-28 - 1 month ago
  • [DataBreaches] ELENOR-corp Ransomware: A New Mimic Ransomware Variant Attacking the Healthcare Sector - 1 month ago
  • [DataBreaches] Scattered Spider Hacking Suspect Extradited to US From Spain - 1 month ago
  • [DataBreaches] Several more lawsuits filed against Frederick Health Hospital related to data breach, cybersecurity failures - 1 month ago
  • [DataBreaches] FBI IC3, Verizon DBIR, Google M-Trends reports are out—here’s the conclusions! - 1 month ago
  • [CloudFlare] Connectivity issues for Regional Services in India - 1 month ago
  • [RegisterSec] M&S stops online orders as ‘cyber incident’ issues worsen - 1 month ago
  • [RegisterSec] Emergency patch for potential SAP zero-day that could grant full system control - 1 month ago
  • [CloudFlare] SSL Certificate Provisioning Delays - 1 month ago
  • [BleepingComputer] Mobile provider MTN says cyberattack compromised customer data - 1 month ago
  • [BleepingComputer] Marks & Spencer pauses online orders after cyberattack - 1 month ago
  • [HackerNews] North Korean Hackers Spread Malware via Fake Crypto Firms and Job Interview Lures - 1 month ago
  • [BleepingComputer] Windows “inetpub” security fix can be abused to block future updates - 1 month ago
  • [SecurityWeek] Former Google Cloud CISO Phil Venables Joins Ballistic Ventures - 1 month ago
  • [BleepingComputer] Baltimore City Public Schools data breach affects over 31,000 people - 1 month ago
  • [SecurityWeek] M-Trends 2025: State-Sponsored IT Workers Emerge as Global Threat - 1 month ago
  • [BleepingComputer] SAP fixes suspected Netweaver zero-day exploited in attacks - 1 month ago
  • [SecurityWeek] Lattica Emerges From Stealth With FHE Platform for AI - 1 month ago
  • [RegisterSoftware] Google admits depreciation costs are soaring amid furious bit barn build - 1 month ago
  • [CloudFlare] SIN (Singapore) on 2025-05-19 - 1 month ago
  • [CloudFlare] SIN (Singapore) on 2025-05-20 - 1 month ago
  • [CloudFlare] SIN (Singapore) on 2025-05-27 - 1 month ago
  • [SecurityWeek] Inside the Verizon 2025 DBIR: Five Trends That Signal a Shift in the Cyber Threat Economy - 1 month ago
  • [BleepingComputer] SAP fixes critical Netweaver flaw exploited in attacks - 1 month ago
  • [HackerNews] New Critical SAP NetWeaver Flaw Exploited to Drop Web Shell, Brute Ratel Framework - 1 month ago
  • [CloudFlare] CPT (Cape Town) on 2025-04-29 - 1 month ago
  • [CloudFlare] SIN (Singapore) on 2025-05-13 - 1 month ago
  • [CloudFlare] SIN (Singapore) on 2025-05-28 - 1 month ago
  • [SecurityWeek] In Other News: Prison for Disney Hacker, MITRE ATT&CK v17, Massive DDoS Botnet - 1 month ago
  • [SecurityWeek] Manifest Raises $15 Million for SBOM Management Platform - 1 month ago
  • [SecurityWeek] Scamnetic Raises $13 Million to Prevent Scams in Real Time - 1 month ago
  • [CloudFlare] Issues with AI Gateway Performance - 1 month ago
  • [CloudFlare] SIN (Singapore) on 2025-05-14 - 1 month ago
  • [CloudFlare] PPT (Tahiti) on 2025-04-28 - 1 month ago
  • [CloudFlare] SIN (Singapore) on 2025-05-21 - 1 month ago
  • [SecurityWeek] South Korean Companies Targeted by Lazarus via Watering Hole Attacks, Zero-Days - 1 month ago
  • [CloudFlare] CHC (Christchurch) on 2025-04-28 - 1 month ago
  • [SecurityWeek] RSA Conference 2025 – Pre-Event Announcements Summary (Part 2) - 1 month ago
  • [RegisterSoftware] £136M government grant saves troubled Post Office from suboptimal IT - 1 month ago
  • [CloudFlare] SUV (Suva) on 2025-04-28 - 1 month ago
  • [HackerNews] Why NHIs Are Security’s Most Dangerous Blind Spot - 1 month ago
  • [HackerNews] SAP Confirms Critical NetWeaver Flaw Amid Suspected Zero-Day Exploitation by Hackers - 1 month ago
  • [CloudFlare] NOU (Noumea) on 2025-04-28 - 1 month ago
  • [RegisterSoftware] £13M government grant saves troubled Post Office from suboptimal IT - 1 month ago
  • [GrahamCluley] Hackers access sensitive SIM card data at South Korea’s largest telecoms company - 1 month ago
  • [CloudFlare] CBR (Canberra) on 2025-04-28 - 1 month ago
  • [CloudFlare] VIE (Vienna) on 2025-04-28 - 1 month ago
  • [RegisterSec] Claims assistance firm fined for cold-calling people who put themselves on opt-out list - 1 month ago
  • [BleepingComputer] FBI seeks help to unmask Salt Typhoon hackers behind telecom breaches - 1 month ago
  • [SecurityWeek] All Major Gen-AI Models Vulnerable to ‘Policy Puppetry’ Prompt Injection Attack - 1 month ago
  • [SecurityWeek] SAP Zero-Day Possibly Exploited by Initial Access Broker - 1 month ago
  • [HackerNews] DslogdRAT Malware Deployed via Ivanti ICS Zero-Day CVE-2025-0282 in Japan Attacks - 1 month ago
  • [HackerNews] Researchers Identify Rack::Static Vulnerability Enabling Data Breaches in Ruby Servers - 1 month ago
  • [SecurityWeek] Hackers Exploit Palo Alto Firewall Vulnerability Day After Disclosure - 4 months ago
  • [SecurityWeek] SGNL Raises $30 Million for Identity Management Solution - 4 months ago
  • [SecurityWeek] New Windows Zero-Day Exploited by Chinese APT: Security Firm - 4 months ago
  • [SecurityWeek] Salt Typhoon Targeting Old Cisco Vulnerabilities in Fresh Telecom Hacks - 4 months ago
  • [RegisterSoftware] After clash over Rust in Linux, now Asahi lead quits distro, slams Linus’ kernel leadership - 4 months ago
  • [RegisterSoftware] Lawyers face judge’s wrath after AI cites made-up cases in fiery hoverboard lawsuit - 4 months ago
  • [SecurityWeek] SonicWall Firewall Vulnerability Exploited After PoC Publication - 4 months ago
  • [RegisterSoftware] Chinese AI marches on as Baidu makes its chatbot free, Alibaba scores Apple deal - 4 months ago
  • [SecurityWeek] In Other News: $10,000 YouTube Flaw, Cybereason CEO Sues Investors, New OT Security Tool - 4 months ago
  • [RegisterSec] Chinese spies suspected of ‘moonlighting’ as tawdry ransomware crooks - 4 months ago
  • [SecurityWeek] Meta Paid Out Over $2.3 Million in Bug Bounties in 2024 - 4 months ago
  • [RegisterSoftware] HPE says blocking Juniper buy is a sure Huawei to ensure China and Cisco thrive - 4 months ago
  • [RegisterSec] Watchdog ponders why Apple doesn’t apply its strict app tracking rules to itself - 4 months ago
  • [SecurityWeek] Rising Tides: Lesley Carhart on Bridging Enterprise Security and OT—and Improving the Human Condition - 4 months ago
  • [RegisterSoftware] Why do younger coders struggle to break through the FOSS graybeard barrier? - 4 months ago
  • [RegisterSec] 2 charged over alleged New IRA terrorism activity linked to cops’ spilled data - 4 months ago
  • [RegisterSoftware] Datacenter energy demand in bitbarn ‘capital of the world’ Virginia nearly doubled in second half of 2024 - 4 months ago
  • [SecurityWeek] Sean Cairncross is Trump Nominee for National Cyber Director - 4 months ago
  • [RegisterSec] Critical PostgreSQL bug tied to zero-day attack on US Treasury - 4 months ago
  • [RegisterSoftware] Users await the fine print on SAP Business Suite reboot - 4 months ago
  • [SecurityWeek] Virginia Attorney General’s Office Struck by Cyberattack Targeting Attorneys’ Computer Systems - 4 months ago
  • [CloudFlare] Pages 1014/403 errors - 4 months ago
  • [CloudFlare] D1 API failures - 4 months ago
  • [CloudFlare] D1 Dashboard issues - 4 months ago
  • [CloudFlare] Network Performance Issues in Portland - 4 months ago
  • [CloudFlare] CMH (Columbus) on 2025-02-14 - 4 months ago
  • [CloudFlare] MFE (McAllen) on 2025-02-14 - 4 months ago
  • [CloudFlare] CASB Google Workspace Findings Lag - 4 months ago
  • [HackerNews] PostgreSQL Vulnerability Exploited Alongside BeyondTrust Zero-Day in Targeted Attacks - 4 months ago
  • [BleepingComputer] whoAMI attacks give hackers code execution on Amazon EC2 instances - 4 months ago
  • [CloudFlare] YUL (Montréal) on 2025-02-17 - 4 months ago
  • [BleepingComputer] Microsoft fixes bug causing Windows Server 2025 boot errors - 4 months ago
  • [HackerNews] RansomHub Becomes 2024’s Top Ransomware Group, Hitting 600+ Organizations Globally - 4 months ago
  • [CloudFlare] VNO (Vilnius) on 2025-02-17 - 4 months ago
  • [BleepingComputer] Chinese hackers breach more US telecoms via unpatched Cisco routers - 4 months ago
  • [CloudFlare] LHR (London) on 2025-02-18 - 4 months ago
  • [HackerNews] Microsoft: Russian-Linked Hackers Using ‘Device Code Phishing’ to Hijack Accounts - 4 months ago
  • [BleepingComputer] PostgreSQL flaw exploited as zero-day in BeyondTrust breach - 4 months ago
  • [CloudFlare] FRA (Frankfurt) on 2025-02-18 - 4 months ago
  • [HackerNews] AI-Powered Social Engineering: Ancillary Tools and Techniques - 4 months ago
  • [BleepingComputer] Malicious PirateFi game infects Steam users with Vidar malware - 4 months ago
  • [HackerNews] Lazarus Group Deploys Marstech1 JavaScript Implant in Targeted Developer Attacks - 4 months ago
  • [CloudFlare] PRG (Prague) on 2025-02-18 - 4 months ago
  • [BleepingComputer] SonicWall firewall bug leveraged in attacks after PoC exploit release - 4 months ago
  • [CloudFlare] IAD (Ashburn) on 2025-02-18 - 4 months ago
  • [CloudFlare] FRA (Frankfurt) on 2025-02-19 - 4 months ago
  • [CloudFlare] AMS (Amsterdam) on 2025-02-19 - 4 months ago
  • [CloudFlare] LHR (London) on 2025-02-20 - 4 months ago
  • [GrahamCluley] US charges two Russian men in connection with Phobos ransomware operation - 4 months ago
  • [BrianKrebs] Nearly a Year Later, Mozilla is Still Promoting OneRep - 4 months ago
  • [Slack] Incident: Some users may have trouble adding multiple existing workspace members to channels by email address - 4 months ago
  • [Slack] Incident: Trouble with adding or triggering steps in Workflow Builder - 4 months ago
  • [FullDisclosure] APPLE-SA-01-30-2025-1 GarageBand 10.4.12 - 4 months ago
  • [TroyHunt] Weekly Update 437 - 4 months ago
  • [HIBP] 9Lives - 109,515 breached accounts - 4 months ago
  • [BleepingComputer] Google says hackers abuse Gemini AI to empower their attacks - 4 months ago
  • [RegisterSoftware] Intel has officially missed the boat for AI in the datacenter - 4 months ago