Security Bulletin

The software company, which specializes in remote IT management, said a "sophisticated nation state actor" was behind the attack but provided few details.

Infosecurity Magazine reports that cybersecurity budgets' percentage of annual organizational spending has declined from 1.1% to 0.6% during the last two years, even though cybersecurity has provided $36 million for every enterprise-wide initiative...

Microsoft has advised Authenticator app users regarding the deprecation of the app's password autofill functionality beginning in July, which should prompt usage of Microsoft Edge instead, BleepingComputer reports.

More than 90% of the top 1.8 million email domains worldwide could be compromised in spoofing attacks, as only 7.7% of the said domains have adopted the most extensive Domain-based Message Authentication, Reporting, and Conformance policy dubbed 'p...

Cybernews reports that Kaiser Permanente, the largest health plan provider in the U.S., has attributed sweeping system outages on Wednesday that prevented electronic health records access and patient care services across several of its locations to...

Brazil-based Unimed, which is the largest healthcare cooperative worldwide, had at least 14 million patient conversations with doctors and its chatbot "Sara" leaked by an unsecured instance of the open-source real-time data transmission platform...

Cyber Security News reports that malicious actors could exploit a new low-severity vulnerability in Apache Tomcat's CGI servlet, tracked as CVE-2025-46701, to circumvent security configuration under certain conditions.

Apple's Safari web browser was discovered to have a Fullscreen API security issue, which could be abused to enable fullscreen browser-in-the-middle intrusions concealing the address bar of the parent window, reports BleepingComputer.

Malicious job offers from fashion and beauty brands Bershka, John Hardy, Fragrance Du Bois, and Dear Klairs have been used to deploy the PureHVNC remote access trojan as part of a multi-stage phishing campaign last year, GBHackers News reports.

Identification and analysis efforts have been evaded for weeks by a new Windows remote access trojan through the use of corrupted Disk Operating System and Portable Executable headers, which could have provided more insights regarding the executable...

Investment, banking, energy, and insurance organizations around the world are having their chief financial officers and other finance executives subjected to a spear-phishing campaign distributing the NetBird malware, reports GBHackers News.

In addition to Coca-Cola, entities in Abu Dhabi, Jordan, Namibia, South Africa, and Switzerland are experiencing extortion attacks, all involving stolen SAP SuccessFactor data.