- Hackers abuse IPv6 networking feature to hijack software updates
- WordPress plugin disguised as a security tool injects backdoor
- WhatsApp unveils ‘Private Processing’ for cloud-based AI features
- SonicWall: SMA100 VPN vulnerabilities now exploited in attacks
- Commvault says recent breach didn’t impact customer backup data
- FBI shares massive list of 42,000 LabHost phishing domains
- UK retailer Co-op shuts down some IT systems after hack attempt
- Ascension discloses new data breach after third-party hacking incident
- Microsoft: Windows 11 24H2 updates fail with 0x80240069 errors
- Grinex exchange suspected rebrand of sanctioned Garantex crypto firm
- Microsoft: Windows Server hotpatching to require subscription
- Hackers ramp up scans for leaked Git tokens and secrets
- France ties Russian APT28 hackers to 12 cyberattacks on French orgs
- Apple ‘AirBorne’ flaws can lead to zero-click AirPlay RCE attacks
- SK Telecom cyberattack: Free SIM replacements for 25 million customers
- Microsoft fixes Outlook paste, blank calendar rendering issues
- CISA tags Broadcom Fabric OS, CommVault flaws as exploited in attacks
- Google: 97 zero-days exploited in 2024, over 50% in spyware attacks
- Marks & Spencer breach linked to Scattered Spider ransomware attack
- Hitachi Vantara takes servers offline after Akira ransomware attack
- VeriSource now says February data breach impacts 4 million people
- Over 1,200 SAP NetWeaver servers vulnerable to actively exploited flaw
- Kali Linux warns of update failures after losing repo signing key
- Microsoft fixes Outlook on the web search issues, failures
- Cloudflare mitigates record number of DDoS attacks in 2025
- Coinbase fixes 2FA log error making people think they were hacked
- Brave’s Cookiecrumbler tool taps community to help block cookie notices
- DragonForce expands ransomware model with white-label branding scheme
- WooCommerce admins targeted by fake security patches that hijack sites
- Windows 11’s Recall AI is now rolling out on Copilot+ PCs
- Windows 11 KB5055627 update released with 30 new changes, fixes
- Craft CMS RCE exploit chain used in zero-day attacks to steal data
- Marks & Spencer pauses online orders after cyberattack
- Mobile provider MTN says cyberattack compromised customer data
- Windows “inetpub” security fix can be abused to block future updates
- Baltimore City Public Schools data breach affects over 31,000 people
- SAP fixes suspected Netweaver zero-day exploited in attacks
- SAP fixes critical Netweaver flaw exploited in attacks
- FBI seeks help to unmask Salt Typhoon hackers behind telecom breaches
- Microsoft announces fix for CPU spikes when typing in Outlook
- Hackers abuse OAuth 2.0 workflows to hijack Microsoft 365 accounts
- Lazarus hackers breach six companies in watering hole attacks
- Microsoft fixes machine learning bug flagging Adobe emails as spam
- Frederick Health data breach impacts nearly 1 million patients
- Microsoft now pays up to $30,000 for some AI vulnerabilities
- Interlock ransomware claims DaVita attack, leaks stolen data
- Yale New Haven Health data breach affects 5.5 million patients
- Microsoft fixes bug causing incorrect 0x80070643 WinRE errors
- Linux ‘io_uring’ security blindspot allows stealthy rootkit attacks
- Russian army targeted by new Android malware hidden in mapping app
