Security Bulletin

Meta has revealed plans to roll out passkeys for Facebook on Android and iOS soon, as well as for Messenger in the coming months, in a bid to bolster user account security, The Hacker News reports.

Ukraine's Office of the Prosecutor General has disclosed the extradition of a suspected Ryuk ransomware hacker to the U.S. months after an arrest in Kyiv made at the behest of U.S. authorities, according to The Record, a news site by cybersecurity...

Updates have been issued by Cisco and Atlassian to address various high-severity security issues impacting their respective offerings, SecurityWeek reports.

BleepingComputer reports that U.S. multinational doughnut and coffeehouse chain Krispy Kreme had information from 161,676 individuals confirmed to be exfiltrated following a November ransomware attack claimed by the Play ransomware operation.

Major Indian IT services and consulting provider Tata Consultancy Services has confirmed that neither its systems nor users had been breached as a result of the Scattered Spider hacking group's attack against leading UK food and clothing retailer...

Dutch domain registrar Openprovider had almost 164 GB of internal and customer data accidentally exposed for three months as a result of a misconfigured Elasticsearch instance, putting the security of millions of domains at risk, according to...

Security Affairs reports that malicious cheat tool-impersonating Java or .NET stealers spread through the Stargazers distribution-as-a-service network have been compromising Minecraft players with multi-stage malware since March.

Threat actors have deployed a more advanced fileless version of the Masslogger credential-stealing malware as part of a new campaign aimed at French users, Cyber Security News reports.

Instead of constantly fixing security vulnerabilities, organizations should proactively build secure foundations that enable businesses to move faster while reducing risk.

In a new wrinkle on the tech support scam front, these search parameter injection attacks dupe victims into believing they are receiving technical help when they are actually speaking to fraudsters.

An unnamed customer of Paragon's Graphite product used the commercial spyware to target at least two prominent European journalists in recent months.