TriZetto Provider Solutions, a healthcare IT firm owned by Cognizant, has disclosed a major data breach affecting more than 3.4 million individuals. The incident exposed sensitive patient and...
The Federal Bureau of Investigation has confirmed that a limited number of its internal servers were compromised earlier this year after an external cyber intrusion. The breach was detected on...
Cybersecurity researchers have uncovered a new campaign attributed to the Iranian state-linked hacking group MuddyWater, which has embedded itself inside several U.S. organizations and deployed a...
A new joint study by Google and GitGuardian has uncovered a troubling weakness at the heart of internet security. Researchers found that more than 2,600 valid TLS certificates protecting major...
Artificial intelligence is rapidly becoming a core component of modern cybercrime operations. New research from Microsoft Threat Intelligence shows that threat actors are no longer merely...
In the ever-evolving landscape of global cybersecurity threats, a sophisticated campaign has emerged targeting the backbone of digital communication in South America. A China-linked advanced...
In the ever-evolving landscape of cybersecurity threats, a new vulnerability has emerged that poses a significant risk to organizations relying on open-source helpdesk solutions. Dubbed Mail2Shell,...
Restaurants using the HungerRush point-of-sale platform have been hit with a wave of extortion emails from a threat actor claiming to possess millions of customer records. The messages warned that...
Spanish and Ukrainian authorities have dismantled a sophisticated money laundering network that exploited war-displaced Ukrainian women to open bank accounts used to move illicit funds through online...
Israel has confirmed that it carried out a strike on a compound in Tehran believed to host key cyber warfare units tied to Iran’s Islamic Revolutionary Guard Corps and its Intelligence Directorate....
It took less than two days for a small development team to learn a painful lesson about cloud security. A single exposed API key linked to Google’s Gemini AI platform allowed attackers to rack up an...
LastPass is warning customers about an ongoing phishing campaign that impersonates the company’s support team using spoofed display names and fabricated internal email threads. The messages are...
An international law enforcement and private-sector coalition has dismantled Tycoon 2FA, a subscription-based phishing-as-a-service platform that enabled cybercriminals to bypass multi-factor...
Security researchers have uncovered a suspected Russian espionage campaign targeting Ukrainian entities through a carefully crafted phishing operation. The attack chain begins with a malicious email...
The FBI has seized the cybercrime forum LeakBase, a platform widely used for buying and selling stolen data, hacking tools, and illicit services. The takedown was carried out as part of a coordinated...
Microsoft has issued a warning about an active phishing campaign that abuses legitimate OAuth login flows to redirect victims to attacker-controlled sites, where malware is delivered or credentials...
Data analytics firm LexisNexis has confirmed that information recently posted on a cybercriminal forum is authentic and tied to a security incident involving a limited number of internal servers. ...
The U.S. Cybersecurity and Infrastructure Security Agency has issued a high priority warning after adding a serious security flaw in Broadcoms VMware Aria Operations platform to its Known Exploited...
In early March 2026, AkzoNobel, the Dutch multinational corporation famous for paints, coatings, and specialty chemicals under brands such as Dulux, Sikkens, International, and Interpon, confirmed...
A public disagreement has emerged between Honeywell and security researcher Gjoko Krstic over the severity and real-world exposure of a reported vulnerability affecting Honeywell’s IQ4 building...