Security Bulletin

An investigation has revealed that a Chinese intelligence agent posing as a Stanford University student attempted to infiltrate academic circles researching China-related issues and advanced technologies, including artificial intelligence, reports...

A new survey conducted by Cyware at the RSA Conference 2025 highlights a significant disconnect between cybersecurity professionals belief in collaboration and the operational reality of threat intelligence sharing, according to BetaNews.

Push Security has introduced the Push Security Advisor Network, a global partner initiative designed to address identity-based threats that traditional perimeter defenses increasingly fail to contain, reports ChannelE2E.

Google Threat Intelligence has exposed a new cyberattack method exploiting .desktop files, typically benign configuration files in Linux environments, to deploy malware through system-level commands and browser redirection, GBHackers News reports.

Escalating concerns regarding cybersecurity risks associated with generative artificial intelligence have prompted 73% of organizations to make AI-specific security tool investments, Infosecurity Magazine reports.

The U.S. government has been urged by the new Strategic Cybersecurity Coalition which includes Google Cloud, Dell Technologies, Forescout, Carahsoft, Velo, and Trellix to strengthen its cybersecurity-focused aid to foreign partners, which are being...

Massachusetts teen Matthew Lane has admitted guilt over his involvement in the massive attack against online education software provider PowerSchool in December, according to NBC News.

BleepingComputer reports that the newly emergent VanHelsing ransomware-as-a-service operation has released its affiliate panel, data leak site, and Windows encryptor source codes after "th30c0der", one of its old developers, attempted to peddle such...

China and North Korea-aligned groups account for more than half of global attacks, and an increasing number of countries look to cyber to balance power in the region.

A vulnerability in Oracle database communications could allow an unauthenticated user to access system memory contents.

Phishing pages targeting mobile devices showed up at the top of Google search results.

Researchers noted that they found several similar websites, two of which are still operating and require the same kind of behavior on behalf of the victim.