Hidden Backdoor Found in ATM Network via Raspberry Pi
A covert ATM attack used a Raspberry Pi to breach bank systems, employing stealthy malware and anti-forensics techniques
Information Security Magazine
Google to Publicly Report New Vulnerabilities Within One Week of Vendor Disclosure
1 week 6 days ago
Google’s Project Zero team will provide limited details of new vulnerabilities early following discovery, in a bid to speed up end users’ patching
Third of Exploited Vulnerabilities Weaponized Within a Day of Disclosure
1 week 6 days ago
32.1% of vulnerabilities listed in VulnCheck’s Known Exploited Vulnerabilities catalog were weaponized before being detected or within the following day
Data Breach Costs Fall for First Time in Five Years
1 week 6 days ago
IBM found that the global average cost of a data breach has fallen by 9% compared to 2024, driven by improved detection and containment
US Tops Hit List as 396 SharePoint Systems Compromised Globally
1 week 6 days ago
A total of 396 compromised Microsoft SharePoint systems have been identified globally, affecting 145 organizations across 41 countries in the wake of the ToolShell zero-day vulnerability
OWASP Launches Agentic AI Security Guidance
2 weeks ago
The comprehensive guidance focuses on technical recommendations for securing agentic AI applications, from development to deployment
French Telco Orange Hit by Cyber-Attack
2 weeks ago
Some of Orange’s professional and consumer services may be disrupted for a few days because of the cyber incident
Critical Authentication Flaw Identified in Base44 Vibe Coding Platform
2 weeks ago
Flaw in Base44 allowed unauthorized access to private apps, bypassing authentication systems
Auto-Color Backdoor Malware Exploits SAP Vulnerability
2 weeks ago
Backdoor malware Auto-Color targets Linux systems, exploiting SAP NetWeaver flaw CVE-2025-31324
CISA Warns of Exploited Critical Vulnerabilities in Cisco Identity Services Engine
2 weeks ago
Hackers are actively exploiting two critical flaws in Cisco Identity Services Engine, said the US Cybersecurity and Infrastructure Security Agency
FBI Seizes $2.4m in Crypto from Chaos Ransomware Gang
2 weeks ago
The federal government has applied for forfeiture of the funds, which were seized by FBI Dallas in April 2025
Charity Fined After Destroying “Irreplaceable” Records
2 weeks ago
A Scottish charity has been fined £18,000 for systematic data protection failings
Pro-Ukraine Hacktivists Ground Dozens of Aeroflot Flights
2 weeks ago
Two pro-Ukraine hacktivists have claimed responsibility for a destructive attack on Aeroflot
Critical Flaws in WordPress Plugin Leave 10,000 Sites Vulnerable
2 weeks 1 day ago
10,000 WordPress sites vulnerable to takeover due to critical flaws in HT Contact Form Widget plugin
New Scattered Spider Tactics Target VMware vSphere Environments
2 weeks 1 day ago
Scattered Spider has targeted VMware vSphere environments, exploiting retail, airline and insurance sectors
Third-Party Breach Impacts Majority of Allianz Life US Customers
2 weeks 1 day ago
Insurance firm Allianz Life said that a threat actor accessed personally identifiable information of the majority of its 1.4 million US customers
Naval Group Denies Hack Claims, Alleges "Reputational Attack"
2 weeks 1 day ago
Despite claims by a hacker, French defense company Naval Group has detected no intrusions into its IT environments at the time of writing
US Woman Gets Eight Years for Part in $17m North Korean Scheme
2 weeks 1 day ago
Arizonan woman sentenced to 102 months for operating laptop farm for North Korean IT workers
Dating App Breach Exposes Images of 13,000 Women
2 weeks 1 day ago
Dating app Tea has been compromised by a hacker, resulting in the exposure of 13,000 selfies
BlackSuit Ransomware Group’s Dark Web Sites Seized in Operation Checkmate
2 weeks 4 days ago
The US and partners from nine countries have taken down part of the ransomware group’s infrastructure
Checked
3 hours 14 minutes ago