:

[SECURITY]

STORIES FROM THE SECURITY DESK ■ LAST 14 DAYS ■ RSS

SECURITY

100 STORIES

U.S. federal prosecutors have unsealed charges against three Russian nationals accused of operating a bulletproof hosting service that supported ransomware gangs responsible for over $62 million in damages worldwide.

2H AGOIndustry Desk

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are actively exploiting three vulnerabilities in Internet-exposed on-premises SharePoint Server instances. Organizations running affected versions must patch immediately.

2H AGOSecurity Desk

Tailscale disclosed a critical vulnerability in its SSH implementation that allowed attackers to gain root access through insecure argument handling. The flaw has been patched in recent versions.

4H AGOAI Desk

A new study found that social media platforms referred over 5.7 million visits to nonconsensual deepfake pornography sites between December 2025 and March 2026, with YouTube and X accounting for the majority of traffic.

7H AGOIndustry Desk

Vancouver Police Department has implemented a discreet button on its website that instantly closes the page and clears browser history when clicked. The feature is designed to help domestic violence survivors quickly hide their browsing activity.

7H AGOIndustry Desk

Europe's digital identity wallet age verification system will only work on iOS and Android devices, excluding alternative mobile platforms. The technical specification has drawn criticism from privacy advocates and open-source developers.

12H AGOIndustry Desk

The Trump administration has established the Gold Eagle federal clearinghouse to enable real-time sharing of AI-related cyber threat intelligence between government agencies and private sector companies. The White House says the system is already receiving vulnerability reports and coordinating patch prioritization.

13H AGOAI Desk

Spanish authorities dismantled a major cybercrime organization responsible for €140 million in fraudulent earnings, resulting in four arrests. The ring operated investment scams and business email compromise attacks.

14H AGOSecurity Desk

SonicWall has released security updates to address two actively exploited vulnerabilities in its SMA1000 appliance. The company urges customers to patch immediately.

14H AGOSecurity Desk

A US federal judge dismissed a class action lawsuit accusing Apple of failing to prevent child sexual abuse material from spreading through iCloud, citing Section 230 protections for online platforms.

15H AGOAI Desk

A threat actor has created nearly 300 fraudulent GitHub repositories impersonating legitimate software and security projects to distribute infostealer malware to unsuspecting developers.

15H AGODev Desk

LastPass has issued a warning about an active phishing campaign using fraudulent security notices to redirect users to malicious websites. The scheme targets both LastPass and Bitwarden password manager users.

17H AGOSecurity Desk

Microsoft has rolled out cumulative updates KB5101650 and KB5099414 for Windows 11, addressing security vulnerabilities and bugs across multiple versions. The updates target versions 25H2/24H2 and 23H2.

17H AGOIndustry Desk

Iran leveraged known vulnerabilities in mobile networks to identify and target U.S. military personnel in the Middle East during the buildup to and early stages of armed conflict.

18H AGOIndustry Desk

Security researchers can now validate system vulnerabilities by analyzing attack techniques rather than launching live exploits. This approach eliminates risks to critical infrastructure while still determining exploitability.

18H AGOSecurity Desk

A new study reveals that YouTube and X are inadvertently functioning as gateways to nonconsensual deepfake pornography services. These platforms contain content directing users to sites where sexually explicit deepfakes can be created for as little as $1 per image.

18H AGOIndustry Desk

SAP released security updates for 16 vulnerabilities in July 2026, including three critical flaws affecting NetWeaver, Commerce Cloud, and AppRouter. The patches address risks across multiple enterprise software components.

22H AGOIndustry Desk

Two newly discovered phishing kits, Jalisco and OmegaLord, are actively targeting Microsoft 365 accounts with techniques designed to circumvent multi-factor authentication protections.

22H AGOSecurity Desk

The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) sanctioned two individuals and one entity for enabling ransomware attacks against American organizations. The action targets infrastructure providers facilitating cyber threats.

YESTERDAYSecurity Desk

As scam calls and messages proliferate, ordinary people are turning the tables on fraudsters through scambaiting—deliberately engaging scammers to waste their time and resources.

YESTERDAYIndustry Desk

Security researchers have identified a defensive technique called "context bombing" that uses prompt injections to trigger an attacker's own AI guardrails, reducing the success rate of AI-based hacking attempts by approximately 90%.

YESTERDAYAI Desk

The Los Angeles Police Department has declined to renew its contract with Flock Safety, citing data privacy concerns. The decision marks a shift in the department's approach to automated license plate reader technology.

YESTERDAYIndustry Desk

Department of Homeland Security analysts dismissed suspicious network activity detected in May as harmless before confirming a breach in June, according to internal documents.

YESTERDAYSecurity Desk

The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning that Russian state-sponsored hackers are actively targeting residential routers. The threat escalates as attackers seek to exploit routers for use as residential proxies.

YESTERDAYSecurity Desk

Grok CLI experienced a critical bug that caused it to upload entire home directories to Google Cloud Storage. The issue sparked significant discussion in the developer community about data handling practices.

YESTERDAYIndustry Desk

Aylo, Pornhub's parent company, will restore access to the site in the UK through Apple's device-level age verification system in iOS 26.4. The move requires users to complete age verification before accessing the platform.

YESTERDAYIndustry Desk

Australia's eSafety Commissioner has identified significant gaps in how major tech platforms address online sexual extortion. Young men are reporting sextortion at higher rates than any other demographic, with over 2,000 complaints filed in just six months.

YESTERDAYIndustry Desk

Angelo Martino, a ransomware negotiator, was sentenced to 70 months in prison for colluding with attackers to defraud victims. Martino helped orchestrate scams that extracted over $75 million from ransomware victims.

YESTERDAYSecurity Desk

Samsung's Health app is warning users that opting out of AI training will result in deletion of their health data. The ultimatum has sparked backlash over privacy and consent practices.

YESTERDAYAI Desk

Nihon Kotsu, Japan's biggest taxi company, has shut down portions of its systems following a cyberattack. The incident disrupted operations across the carrier's network infrastructure.

YESTERDAYSecurity Desk

Telegram's short-link domain t.me has been suspended, disrupting the messaging platform's URL shortening service. The suspension raises questions about accessibility and service continuity for millions of users.

YESTERDAYAI Desk

A new macOS malware called CrashStealer disguises itself as Apple's crash-reporting tool to steal credentials, keychain data, and cryptocurrency wallets from infected systems.

YESTERDAYSecurity Desk

Security firm Jscrambler disclosed that attackers published a malicious version of its npm package, which was downloaded nearly 1,500 times before detection. The compromised package contained infostealer malware targeting developer systems.

YESTERDAYSecurity Desk

Security researchers are turning prompt injection attacks into a defensive weapon. The technique, called "context bombing," forces malicious AI agents to shut down before causing damage.

YESTERDAYIndustry Desk

The Los Angeles Police Department has allowed its contract with surveillance company Flock to expire, citing serious civil liberties and privacy concerns. The move marks a significant departure for one of Flock's largest government customers.

YESTERDAYSecurity Desk

Lidl has notified customers across Germany, Belgium, and the Netherlands that their personal information was compromised in a breach targeting a third-party service provider.

YESTERDAYSecurity Desk

The Cybersecurity and Infrastructure Security Agency has released a postmortem on a significant security breach where a contractor accidentally published internal credentials—including AWS Govcloud keys—to a public GitHub repository. The credentials remained exposed for nearly six months before KrebsOnSecurity alerted the agency.

YESTERDAYDev Desk

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning of actively exploited remote code execution vulnerabilities in two popular Joomla extensions. Attackers are leveraging arbitrary file upload flaws in iCagenda and Balbooa Forms to gain unauthorized access to affected systems.

YESTERDAYSecurity Desk

UK authorities have charged five suspects following a National Crime Agency investigation into Russian Coms, a caller ID spoofing platform allegedly used to execute over 1.8 million scam calls.

YESTERDAYIndustry Desk

The European Union has sanctioned members of Russia's Federal Security Service (FSB) for cyber espionage and sabotage campaigns targeting EU and Ukrainian entities since 2010. The move, coordinated with the UK, targets dozens of individuals and organizations involved in systematic hacking operations.

JUL 13AI Desk

Cybersecurity agencies from the United States and eight allied nations have issued a joint warning about Russian state-sponsored hackers targeting vulnerable routers to breach critical infrastructure networks.

JUL 13Industry Desk

A new browser fingerprinting vector has emerged in Chromium 148, where the Math.tanh function produces different results across operating systems. This discrepancy can be exploited to identify a user's underlying OS without explicit permission.

JUL 12Industry Desk

Kaseya is hosting a webinar on strengthening MSP resilience through SaaS backups and business continuity strategies. The session focuses on how recovery capabilities prove critical when security defenses are breached.

JUL 12Security Desk

A new variant of RedHook Android malware abuses Wireless ADB (Android Wireless Debugging) to gain shell-level privileges without requiring a computer connection. This represents a significant escalation in the malware's capabilities.

JUL 12Security Desk

Fraudsters are creating convincing counterfeit news articles impersonating major publishers like the Guardian to direct social media users to bogus investment sites. The fake stories feature fabricated celebrity endorsements and financial narratives designed to establish credibility.

JUL 12Industry Desk

A security analysis reveals xAI's Grok Build command-line tool transmits complete source code and project files to xAI's servers. The discovery raises data privacy questions for developers using the tool.

JUL 12AI Desk

A Cambridge study reveals that terrorist organizations including Boko Haram and ISIS are using ChatGPT, Claude, and Gemini to plan attacks and develop weapons. Safety filters designed to prevent such misuse have repeatedly failed.

JUL 11AI Desk

The Australian Cyber Security Centre has issued an alert about coordinated exploitation of vulnerable content management systems and plugins worldwide. The campaign targets organizations using outdated or unpatched CMS software.

JUL 11AI Desk

Artificial intelligence discovered a critical security vulnerability in Linux kernel code that human developers overlooked for over a decade. The bug could allow unauthorized root access to systems.

JUL 11AI Desk

Researchers have demonstrated a new attack called 'Ghostcommit' that hides prompt injections in PNG files to fool AI code reviewers and agents into exposing repository secrets.

JUL 11AI Desk

A 34-year-old Armenian man pleaded guilty to hacking U.S. companies and deploying the Ryuk ransomware. He faces up to 15 years in prison.

JUL 11Security Desk

Australia's eSafety watchdog will investigate whether major adult websites are allowing users to bypass age verification requirements using virtual private networks (VPNs). The probe follows new regulations introduced in March requiring age checks on adult content.

JUL 11Industry Desk

Dutch National Police have identified strong evidence that Dutch hackers were responsible for a February breach at telecommunications provider Odido. The investigation marks a significant development in the case.

JUL 11Security Desk

Surveillance technology company Flock Safety did not issue a cease-and-desist letter to The Saturday Salon, a Newport Beach lecture series, despite claims posted on Instagram Thursday. The incident reignites debate over the company's practices and relationship with law enforcement.

JUL 11Security Desk

The US Cybersecurity and Infrastructure Security Agency revealed it lacked a prepared incident response plan during a recent security event, forcing it to develop procedures in real time.

JUL 11Security Desk

Research reveals that terrorist group Boko Haram is leveraging advanced AI technologies to enhance operational capabilities. A new report documents how the organization has integrated frontier AI systems into recruitment, planning, and execution efforts.

JUL 10AI Desk

Researchers have discovered six vulnerabilities in U-Boot, a bootloader used across millions of devices, that could allow attackers to execute malicious code during device startup. The flaws could enable persistent malware installation while bypassing security protections.

JUL 10Industry Desk

Progress Software is alerting ShareFile customers running Storage Zone Controllers to immediately shut down their servers due to a credible external security threat targeting the on-premises file-sharing platform.

JUL 10Industry Desk

A US court sentenced Angelo Martino, a former ransomware negotiator, to 70 months in prison for colluding with the BlackCat ransomware gang to extort $75.3 million from five of his employer's clients.

JUL 10Security Desk

A Florida-based ransomware negotiator has been convicted for assisting a notorious ransomware gang in extorting U.S. companies. This marks the third negotiator jailed for facilitating ransom payments to hackers.

JUL 10Security Desk

Attackers are actively exploiting a critical authentication bypass in Gitea's official Docker image that enables user impersonation, including administrator accounts. The vulnerability affects the self-hosted Git service.

JUL 10Dev Desk

Microsoft rolled out a new "Workspace Check-in" feature for Teams last month that enables location tracking of employees. The feature raises questions about employee privacy and monitoring capabilities.

JUL 10Industry Desk

Fraud losses extend far beyond chargebacks. False declines, account takeovers, and customer abuse collectively damage revenue and erode trust, according to fraud prevention analysis.

JUL 10Industry Desk

Zimbra has issued an urgent security advisory urging customers to patch a critical cross-site scripting (XSS) vulnerability in its Classic Web Client. The flaw affects users of the Zimbra Collaboration suite.

JUL 10Industry Desk

Facewatch, a facial recognition system used by major retailers including Sainsbury's and B&M, is launching real-time police alerts for serious offenders. Civil liberties groups have raised concerns about the technology's surveillance implications.

JUL 10Industry Desk

Bright Data Ltd., an Israel-based web scraping startup, announced a $1 million bug bounty program as law enforcement intensifies oversight of the data collection industry.

JUL 10Industry Desk

A former DigitalMint employee has been sentenced to nearly six years in prison for participating in BlackCat ransomware attacks targeting U.S. companies. The case marks a significant prosecution in the ongoing crackdown against major ransomware operations.

JUL 10Security Desk

Microsoft has released a patch for a zero-day vulnerability in Windows Defender that could allow attackers to exhaust hard disk space. The flaw was discovered and reported by security researcher NightmareEclipse.

JUL 9Industry Desk

A software defect from 2006 triggered a cascading network failure that knocked out Telstra's national phone service Wednesday morning. The bug, related to daylight savings time processing, created a 'digital domino chain' that locked customers out across the country.

JUL 9Industry Desk

The EU Parliament is advancing legislation that would require tech companies to scan for child sexual abuse material (CSAM), reviving a proposal rejected in March. End-to-end encrypted services like WhatsApp would be exempt from the requirements.

JUL 9Industry Desk

Hackers compromised the Injective Labs SDK repository on GitHub and published a malicious package to npm that steals cryptocurrency wallet private keys and seed phrases from developers.

JUL 9Dev Desk

Microsoft says Windows users should expect increased security patches as the company deploys AI tools to identify vulnerabilities in its codebase. The shift reflects a growing reliance on artificial intelligence for proactive threat detection.

JUL 9AI Desk

A new data-extortion group called Helix is exploiting identity-focused tactics to infiltrate SharePoint environments and steal sensitive data. The group uses voice phishing, device code phishing, and MFA abuse to gain unauthorized access.

JUL 9Industry Desk

Block, the parent company of Cash App, agreed to pay $45 million to resolve a multistate investigation into misleading fraud protection claims. State attorneys general found the company falsely advertised that Cash App offered bank-like protections and advanced fraud detection.

JUL 9Industry Desk

Security threats don't pause when IT staff take time off, yet many organizations reduce staffing during summer months. This mismatch leaves critical systems vulnerable during peak vacation season.

JUL 9Security Desk

Law enforcement agencies across 97 countries arrested 5,811 suspects and seized $293 million in illicit assets in a coordinated anti-fraud operation.

JUL 9Industry Desk

New York became the first US state to prohibit smart glasses across its entire court system. The ban covers all 1,240 state, county, city, town, and village courts.

JUL 9Industry Desk

Federal investigators report that the Department of Government Efficiency (DOGE) deleted records that would have shown whether the agency accessed sensitive government systems. A government report claims DOGE did not access those systems.

JUL 9AI Desk

Madison Square Garden kept a detailed database categorizing hundreds of celebrities, including LGBTQIA labels and risk assessments. The list tracked famous attendees and Taylor Swift's wedding guests.

JUL 9Industry Desk

Interpol and law enforcement agencies have arrested 5,811 suspects and seized $293 million across 97 countries in a coordinated operation targeting social engineering scams and fraud.

JUL 9Industry Desk

Insurance company AssuranceAmerica disclosed a data breach affecting nearly 7 million drivers after attackers accessed its systems earlier this year.

JUL 9Security Desk

Artificial intelligence is making service desk attacks more convincing, personalized, and widespread, according to Specops Software. Organizations need stronger verification protocols to combat the evolving threat.

JUL 9AI Desk

Nidec Corp.'s CEO says surging data center demand is cushioning the Japanese motor supplier from recent quality control and accounting scandals. The company is prioritizing customer trust recovery despite financial headwinds.

JUL 9Industry Desk

Microsoft has released a security patch for a Defender zero-day vulnerability called RoguePlanet, disclosed following the June 2026 Patch Tuesday update.

JUL 9Security Desk

Caller ID service Truecaller is pushing back against India's telecom regulator over new anti-spam regulations, claiming users are increasingly blocking calls from the country's dedicated business number series.

JUL 9Industry Desk

Telstra customers faced a second day of disruptions Thursday as a secondary outage prevented some from reaching triple-zero emergency services. Regional train services remained affected following Wednesday's initial mobile network failure.

JUL 9AI Desk

Australia's government has instructed volunteers to discard thousands of functional test routers despite the devices being capable of being reflashed for continued use.

JUL 9Industry Desk

A lawsuit alleges a man used X's Grok AI to create approximately 7,000 sexually explicit images of his stepdaughter before taking his own life. Multiple young girls are now suing X, claiming the platform failed to prevent the abuse.

JUL 8Industry Desk

Mount Royal University in Calgary has confirmed that hackers breached its network and stole data from file storage systems before deleting it. The university is investigating the scope of the incident.

JUL 8AI Desk

The National Highway Traffic Safety Administration has demanded autonomous vehicle companies cease interfering with first responders at emergency scenes, calling such incidents a critical safety issue rather than rare edge cases.

JUL 8Industry Desk

Google awarded $250,000 through its vulnerability rewards program for discovering a critical Linux kernel vulnerability that allows untrusted users to escape virtual machines and gain root privileges.

JUL 8Dev Desk

Malicious packages impersonating Paysafe, Skrill, and Neteller SDKs were discovered on npm and PyPI, distributing stealer malware to developers and end users.

JUL 8Dev Desk

A China-linked threat cluster is exploiting vulnerable Roundcube servers at academic institutions in the U.S. and Canada to steal credentials and deploy backdoor malware.

JUL 8Security Desk

Chinese artificial intelligence capabilities are progressing rapidly, triggering cybersecurity alarms in the United States. The development reshapes the competitive landscape for frontier AI technologies.

JUL 8AI Desk

OpenBSD has disclosed a use-after-free vulnerability (CVE-2026-57589) that allows local attackers to escalate privileges to root. The flaw affects the operating system and requires local access to exploit.

JUL 8Industry Desk

A cyberattack on a major U.S. insurance company has compromised millions of driver's license numbers, marking the largest known breach of this data type in 2026.

JUL 8Security Desk

A vulnerability acquisition startup offering millions for zero-day exploits is operated by convicted felons with ties to far-right conspiracy theories, according to reports. The founders previously ran fake intelligence companies and an AI lobbying platform under assumed identities.

JUL 8Security Desk

Security researchers at Noma discovered a vulnerability in GitHub's AI agent that allows attackers to extract private repository contents through prompt injection. The flaw potentially exposes sensitive code and data across thousands of projects.

JUL 8AI Desk

A closed-door simulation revealed how insurers would respond to a mass disruption of US water infrastructure by China's Volt Typhoon hacking group. The exercise uncovered significant gaps in preparedness.

JUL 8Security Desk

Japanese telecom KDDI disclosed a major data breach affecting over 12 million people across five internet service providers. Attackers accessed an email platform, exposing email addresses and passwords.

JUL 8Security Desk