Spain’s Ministry of Science has temporarily shut down portions of its IT infrastructure following claims by threat actors that they breached internal systems. The move, confirmed by government...
In the realm of cybersecurity, few events underscore the vulnerabilities of modern digital infrastructures as starkly as the Conduent data breach. What started as an undetected intrusion in late 2024...
Cybersecurity researchers have uncovered an active campaign in which attackers are compromising NGINX web servers to covertly redirect user traffic to malicious or monetized destinations. The...
Al-Futtaim Group, one of the Middle East’s largest and most diversified conglomerates, has confirmed a data breach that resulted in unauthorized access to sensitive information belonging to customers...
Personal data linked to students and affiliates of Harvard University and the University of Pennsylvania has been leaked online following an extortion campaign tied to the ShinyHunters cybercrime...
The long running struggle for control and influence within the cybercrime underground escalated this week after BreachForums’ .bf domain was defaced by a threat actor known as HasanBroker, only to...
A critical security flaw in VMware ESXi has moved decisively from theory into practice, with ransomware groups now exploiting CVE-2025-22225 in active attacks against enterprise environments. The...
In a startling development that underscores the persistent threats facing critical infrastructure, the notorious Qilin ransomware gang has claimed responsibility for a significant data breach at...
Threat actors are actively exploiting a serious vulnerability in React Server Components, marking a dangerous escalation in attacks against modern web application frameworks. Security researchers...
Microsoft has formally begun the long anticipated phase out of New Technology LAN Manager authentication, marking a major shift in how Windows environments handle identity and access. The move...
A newly disclosed critical vulnerability in the widely adopted vLLM framework has raised urgent alarms across the artificial intelligence and cloud security communities. The flaw enables...
In the ever-evolving landscape of cyber threats, state-sponsored actors continue to demonstrate their agility in turning freshly disclosed vulnerabilities into potent weapons. The Russia-linked...
The StopICE reporting platform, a U.S. government service designed to allow the public to submit tips related to immigration and border enforcement, was reportedly compromised and used to send...
Data linked to a previously disclosed AT&T breach has resurfaced across underground forums and public sharing platforms, reigniting concerns about the long tail impact of large scale data exposure....
For months, one of the world’s most trusted developer tools quietly betrayed its users, not through malicious code written by its maintainers, but through a poisoned path designed to deliver...
In the quiet hours before dawn on a chilly January morning in 2026, the city of New Britain, Connecticut, found itself under siege. Not from a physical invader, but from a digital one. A...
SolarWinds has released an urgent security update for its Web Help Desk (WHD) platform after disclosing multiple high risk vulnerabilities, including flaws that allow authentication bypass and...
Apple is rolling out a new privacy-focused feature designed to reduce how precisely mobile carriers can track the physical location of iPhone and iPad users. The setting, called “Limit Precise...
Cybersecurity researchers are warning of a profound shift in the threat landscape as autonomous artificial intelligence agents evolve from experimental tools into fully fledged criminal enterprises....
A low-visibility but highly calculated cyber campaign is quietly rewriting the rules of web server compromise, turning trusted infrastructure into selective tools of manipulation rather than blunt...