Cyberattacks this week underscored how inexpensively threat activity is evolving, from low-cost malicious AI to large-scale supply-chain compromises hitting npm ecosystems. As retail infrastructure scales…
Threat Protection Pro Performance: Achieved 90% phishing detection with zero false positives in AV-Comparatives’ 2025 test. Independent Ranking: Placed third among all tested security tools,…
Key Takeaways Third-party breach: The security incident occurred within Mixpanel's systems, a third-party analytics provider, not within OpenAI's infrastructure. Limited data exposure: The breach exposed…
Key Takeaways Target profile: Tomiris APT is targeting foreign ministries and intergovernmental and government entities, focusing on Russian speakers and Central Asian countries. Novel C2…
Key Takeaways Attack confirmed: The City of Santa Paula, a government organization in the USA, has reportedly been targeted by the Qilin ransomware group. System…
Key Takeaways New campaign: Scattered Lapsus$ Hunters is targeting Zendesk users with a sophisticated phishing campaign involving fake support sites. Phishing infrastructure: Security researchers have…
EU Proposal: EU considers under-16 social media ban after strong parliamentary backing for unified rules across Europe. Global Influence: Australia’s upcoming 2025 under-16 ban influences…
Law Activation: Takes effect Nov 30, requiring age checks for sites with 33% harmful content. Compliance Requirements: Platforms must verify users via digital IDs, government…
Annual Audit Completed: TunnelBear finishes its 8th independent security audit with full white-box testing. Findings & Fixes: Cure53 reports 13 vulnerabilities; all acknowledged and mitigated…
Key Takeaways New threat: A Mirai-based botnet variant, ShadowV2, is actively exploiting multiple vulnerabilities to compromise IoT devices. Widespread exploitation: The malware targets known vulnerabilities…
Key Takeaways Vulnerability discovered: A security flaw in jury management systems developed by Tyler Technologies has exposed data of jurors across several U.S. states. Data…
Key Takeaways Multi-council impact: A cyberattack has affected at least three London councils: the RBKC, Westminster City Council, and Hammersmith and Fulham Council. National investigation:…
Key Takeaways FCC alert: The FCC has issued a public notice about recent cyber intrusions targeting U.S. radio broadcasters. Attack method: Hackers are compromising improperly…
Key Takeaways System disruption: The OnSolve CodeRED emergency alert system, used by U.S. municipalities, has been taken offline following a cyberattack. Data breach: User information,…
Free Pro for Journalists/NGOs: Windscribe offers verified reporters and NGOs a free 1-year Pro plan. New AmneziaWG Protocol: Adds stealth WireGuard variant to bypass censorship…
Mandatory Scanning Removed: Council drops compulsory scanning but leaves provisions enabling future surveillance expansion. New Scanning & Blocking: AI-based content checks and state-level blocking systems…
Key Takeaways Novel attack chain: The RomCom threat group is now using the SocGholish malware delivery framework to deploy its Mythic Agent payload. Target profile:…
Key Takeaways Low-cost access: The latest version, WormGPT 4, is available on underground forums with subscription prices starting at $50 per month and $220 for…
Key Takeaways Flaw identified: A high-severity vulnerability, tracked as CVE-2025-59373, has been discovered in the ASUS MyASUS application. Potential Impact: It allows a low-privilege local…
Key Takeaways Arrest and charges: A 21-year-old Russian cybersecurity entrepreneur has been arrested in Moscow on treason charges. Public criticism: Kilin had publicly criticized the…
Get expert insights on threats, breaches, scams, and security trends — delivered every Saturday.
