Security Bulletin

Japanese graphics tablet manufacturer Wacom has disclosed the potential compromise of its customers' personal and credit card information following a breach of its online store that may have happened from Nov. 28, 2024 to Jan. 8, 2025, The Register...

New York Blood Center Enterprises, one of the leading independent blood centers across the U.S., had its blood drives and donation center activities deferred following a ransomware attack, which has not yet been claimed by any known threat operation...

BleepingComputer reports that threat actors could covertly hijack devices through the new multi-stage Browser Syncjacking attack that involves a trojanized Chrome extension.

Illicit use of Google's generative artificial intelligence chatbot Gemini has been conducted by more than 57 state-backed advanced persistent threat groups across 20 countries, according to The Hacker News.

The Cyber Trust Mark has the potential to change how we define and measure security at the endpoint level. But potential isn't enough.

More than 17 million individuals across the U.S. were disclosed by the Department of Justice to have had their stolen data exposed on the Cracked and Nulled cybercrime forums, which have been taken down as part of the international law enforcement...

Advanced Pakistani cybercrime network HeartSender, also known as Saim Raza, had its operations disrupted by the U.S. Department of Justice and Dutch National Police following the sequestration of its domains and servers as part of "Operation Heart...

Here’s how the bad guys will exploit DeepSeek – and what to do about it.

No ransomware groups have yet to claim responsibility for either attack, and both institutions have yet to reveal what may have been stolen.

The “Time Bandit” vulnerability could be used to make ChatGPT provide malware creation instructions.

Chaining the Voyager PHP flaws together could let attackers steal sensitive GitHub project files.