Security researchers and multiple organisations have confirmed that a series of vulnerabilities affecting WatchGuard Firebox firewalls have been actively exploited in targeted cyber-attacks. The...
In the fast-paced world of pharmaceutical research, where innovation drives life-saving discoveries, cybersecurity has become an indispensable shield. Yet, even the most vigilant organizations can...
Cyber-threat actors have launched a highly targeted phishing campaign against private equity funds and financial firms, exploiting the trust and widespread use of e-signature services to trick...
Developers are being warned after multiple malicious extensions were discovered on the official Visual Studio Code Marketplace, designed to compromise developer machines and exfiltrate sensitive...
December 8, 2025 — Updated 19:40 UTC In one of the most significant managed service provider (MSP) compromises of 2025, the aggressive ransomware collective known as Space Bears has claimed a...
A newly disclosed class of security flaws known as the “IDEsaster” vulnerability has raised urgent concerns across the global software engineering community. The weaknesses affect several leading AI...
In what security professionals are calling a watershed moment for distributed denial-of-service (DDoS) threats, a massive attack peaking at 29.7 terabits per second (Tbps) has been publicly...
The LockBit 5.0 ransomware syndicate suffered its most significant operational breach to date after internal infrastructure data, redacted server IPs, administrative panel code, and backend workflow...
The Portuguese government has enacted sweeping amendments to its national cybercrime legislation, significantly expanding the legal framework to address modern digital threats. The updated law...
In the bustling heart of Turkey's automotive sector, where innovation meets tradition on showroom floors and service bays alike, a digital storm has struck without warning. On December 6, 2025, Ermat...
A critical command injection flaw in Array Networks' ArrayOS AG VPN gateways has moved from a technical advisory to an active global threat. Since at least August 2025, attackers have been exploiting...
When investigators from US and Canadian cyber agencies began pulling apart a series of persistent intrusions in 2024 and 2025, they kept finding the same unfamiliar backdoor buried deep inside...
In the high-stakes arena of pharmaceutical research, where breakthroughs in drug discovery and preclinical testing can mean the difference between life and legacy, few threats loom as ominously as a...
In the ever-evolving landscape of cyber threats, a new benchmark has been set that underscores the growing sophistication and scale of digital attacks. The AISURU botnet, a formidable network of...
Cybersecurity researchers have raised the alarm over a newly observed infection method for mobile spyware known as “No-Tap.” The technique bypasses the need for overt phishing, malicious downloads,...
A newly released joint advisory from the Cybersecurity and Infrastructure Security Agency, the National Security Agency, and the Canadian Centre for Cyber Security warns that state sponsored cyber...
A critical remote code execution vulnerability in React Server Components and the Next.js framework has sent a shockwave through the modern web ecosystem. At the heart of the issue is a flaw in...
4 December 2025 • In-depth Report NCFE, the 175-year-old awarding body responsible for millions of vocational and technical qualifications across the UK, has taken the drastic and unprecedented step...
Security analysts have uncovered a sophisticated new Android malware campaign dubbed “SeedSnatcher.” The malware is designed to steal cryptocurrency wallet seed phrases by abusing WebView overlays,...
Date: December 3, 2025 Overview: The University of Phoenix has disclosed a significant cybersecurity incident after discovering unauthorized access to its enterprise systems. The breach—linked to...