For individuals

Authorization potentially bypassed with critical Next.js bug Attacks leveraging a recently patched critical security flaw in open-source JavaScript framework Next.js, tracked as CVE-2025-29927, could facilitate middleware authorization evasion and eventual systems compromise, according to CyberScoop.

MacOS and Linux systems have been targeted by the newest samples of the Albabat ransomware, also known as White Bat, which was initially reported to have targeted Windows systems upon its emergence in 2023 before targeting Linux in January 2024, SecurityWeek reports.

Raspberry Robin breaks into organizations and sells access to Russian threat actors, including the military cyber unit behind attempted coups, assassinations, and influence operations throughout Europe.

Security experts worry the company's Chapter 11 status and aim to sell its assets could allow threat actors to exploit and misuse the genetic information it collected.

U.S.-based carriers blocked from using China-based services and equipment.

Exposing MFA’s weaknesses in an era of advanced threats.