Security Bulletin

Mounting artificial intelligence-based financial deepfake schemes have prompted Sens. John Husted, R-Ohio, and Raphael Warnock, D-Ga., to introduce the Preventing Deep Fake Scams Act that would mandate the establishment of a new task force that would...

Hackread reports that Disneyland Paris had 64 GB claimed to have been compromised by the Anubis ransomware-as-a-service operation, which touted the incident to be "the largest data leak" in Disneyland Park history.

Tonga's National Health Information System and its Ministry of Health's website were confirmed to be taken down by a ransomware attack on June 15, according to The Record, a news site by cybersecurity firm Recorded Future.

Major Russian retailers Lenta, Miratorg, and Yandex Lavka have disclosed significant dairy supply chain disruptions after the country's Mercury platform used for animal-based product certification was downed by a cyberattack earlier last week...

North Korean hacking collective Lazarus Group was accused by Taiwan-based cryptocurrency exchange BitoPro of having perpetrated an $11 million cryptocurrency heist earlier last month, BleepingComputer reports.

Widely used cryptocurrency price tracking site CoinMarketCap had $43,266 worth of cryptocurrency pilfered from 110 victims following a Friday attack that involved the Inferno Drainer crypto-draining tool, according to Hackread.

Newly emergent threat operation Mocha Manakin has leveraged the ClickFix attack technique to deploy the novel NodeInitRAT malware as part of an attack campaign initially observed earlier this year, reports Cyber Security News.

In a market where security budgets flatten while threats accelerate, improving analyst throughput is fiscal stewardship.

A Nemzetbiztonsági Szakszolgálat Nemzeti Kibervédelmi Intézet (NBSZ NKI) az MVM Next Energiakereskedelmi Zrt. nevével és arculati elemeivel visszaélő, adathalász hivatkozást tartalmazó szöveges üzenetek (SMS) terjedésére hívja fel a figyelmet.

At this week's re:Inforce 2025 conference, the cloud giant introduced new capabilities to several core security products to provide customers with better visibility and more context on potential threats.

Cato Networks’ prompt injection exploit highlights the risks of external input to internal AI services.