Security Bulletin

The same easily exploitable vulnerability was found in three of the apps that led to the compromise of victims' data.

While Ukraine remains Russia's major target for cyberattacks, TAG-110 is part of a strategy to preserve "a post-Soviet sphere of influence" by embedding itself in other countries' infrastructures.

FTC said GoDaddy failed to prove it offered its 21 million customers adequate security.

The emerging threat group is the latest to adopt the combo attack tactic, which Black Basta and other groups already are using to gain initial access for ransomware deployment.

Insurance experts weigh in how the recent barrage of attacks against UK retailers could affect premium rates and policy requirements, as well as work toward improving risk assessment.

The mission is to gather information that could help Russia in its war against Ukraine.

The loosely affiliated hacking group has shifted closer to ransomware gangs, raising questions about Scattered Spider's ties to the Russian cybercrime underground.

The U.S. Federal Trade Commission has been sought by the Electronic Privacy Information Center and children's advocacy group Fairplay to launch a probe on Google's updated Family Link program that would allow youths younger than 13 to access the...

TechCrunch reports that major U.S. telecommunications firms AT&T, T-Mobile, and Verizon were noted by Senate Intelligence Committee member Ron Wyden, D-Ore., to have failed to inform the Senate regarding federal surveillance requests on lawmakers'...

Industrial automation firm AutomationDirect's MB-Gateway devices, which are being leveraged in critical infrastructure organizations worldwide, have been impacted by a maximum severity missing authentication vulnerability, tracked as CVE-2025-36535...

Hackread reports that Facebook was claimed by threat actor "ByteBreaker" to have had 1.2 billion account details scraped following the exploitation of its API, with the actor sharing a sample data exposing 100,000 users' full names, usernames...