ChatGPT Security Issue Enabled Data Theft via Single Prompt
OpenAI has patched vulnerability, which Check Point said was because of a DNS loophole
Information Security Magazine
TeamPCP Explores Ways to Exploit Stolen Supply Chain Secrets
1 week ago
TeamPCP is exploring ways to monetize the secrets harvested during supply chain attacks, with identified ties to the Lapsus$ and Vect ransomware gangs
Employee Data Breaches Surge to Seven-Year High
1 week ago
Analysis from law firm Nockolds suggests non-cyber incidents are driving up employee data breaches
NCSC Urges Immediate Patching of F5 BIG-IP Bug
1 week ago
The National Cyber Security Centre wants UK firms to patch CVE-2025-53521
Cybercriminals Exploit Tax Season With New Phishing Tactics
1 week 1 day ago
Tax-season phishing floods deliver RMM malware, credential theft, BEC and tax-form scams
Lloyds IT Glitch Exposed Data of Nearly 500,000 Banking Customers
1 week 1 day ago
Lloyds app glitch exposed up to 447,936 customers’ transactions and personal data during update
DeepLoad Malware Combines ClickFix With AI-Generated Code to Avoid Detection
1 week 1 day ago
Researchers at ReliaQuest warn of persistent malware campaign targeting enterprise credentials
Critical Citrix NetScaler Vulnerability Exploited in the Wild
1 week 1 day ago
Researchers from watchTowr and Defused have found evidence that attackers are actively exploiting CVE-2026-3055, a critical NetScaler vulnerability
ICO Fines UK Nuisance Call Scammers £100,000
1 week 1 day ago
The UK Information Commissioner’s Office has handed a £100,000 fine to Birmingham-based TMAC
European Commission Confirms Cloud Data Breach
1 week 1 day ago
The European Commission has revealed details of a data breach impacting its AWS infrastructure
New Wave of AiTM Phishing Targets TikTok for Business
1 week 4 days ago
Push Security has uncovered a new AiTM phishing campaign targeting TikTok for Business accounts using Google and TikTok themed login pages
TeamPCP Targets Telnyx Package in Latest PyPI Software Supply Chain Attack
1 week 4 days ago
Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware
Quantum Computing Threat to Encryption Is Closer Than Expected, Warns Google
1 week 4 days ago
‘Q-Day’ and the cybersecurity problems it brings could come as early as 2029 as Google accelerates its post-quantum cryptography migration
UK Cracks Down on Chinese Crypto Marketplace for Funding Southeast Asia Scam Hubs
1 week 4 days ago
The UK government has sanctioned Xinbi, described as “the second-largest illicit online marketplace ever”
Security Researchers Sound the Alarm on Vulnerabilities in AI-Generated Code
1 week 5 days ago
Security researchers from Georgia Tech have observed a surge in reported CVEs for which the flaw was introduced by AI-generated code
Attackers Rapidly Weaponize Critical Oracle WebLogic RCE, Honeypot Study Finds
1 week 5 days ago
Attackers rapidly exploited a critical Oracle WebLogic RCE flaw the same day exploit code was released, according to a CloudSEK honeypot study
EtherRAT Techniques Bypass Security Via Ethereum Smart Contracts
1 week 5 days ago
EtherRAT hides C2 in Ethereum smart contracts via EtherHiding, steals wallets and credentials
AI Becomes the Top Cybersecurity Priority for Defenders as Criminals Exploit It, PwC Warns
1 week 5 days ago
PwC Annual Threat Dynamics report says AI-threats are the biggest concern of clients
OpenAI Expands Bug Bounty to Cover AI Abuse and 'Safety' Concerns
1 week 5 days ago
OpenAI’s Safety Bug Bounty program seeks to address AI safety vulnerabilities beyond traditional security flaws
Iran-Linked Pay2Key Ransomware Group Re-Emerges
1 week 5 days ago
Halcyon and Beazley Security track the return of Iranian ransomware group Pay2Key
Checked
37 minutes 17 seconds ago