Evasion Tactics Used By Cybercriminals To Fly Under The Radar

Hackers Use Cloud Services To Target Financial And Insurance Firms

BT Spots 2,000 Potential Attacks On Its Network A Second

Apple Vision Pro’s Eye Tracking Exposed What People Type

The Vision Pro uses 3D avatars on calls and for streaming. These researchers used eye tracking to work out the passwords and PINs people typed with their avatars.

Chinese Hackers Linked To Syndicate Arrested In Singapore

Hacker Steals Data On 300k From Avis

When You Pay A Ransom And The Decryptor Doesn't Work

NPD Breach Underscores The Need For Stronger Digital Identities

Microsoft Says Windows Update Zero-Day Being Exploited To Undo Security Fixes

Electronic Payment Firm Slim CD Notifies 1.7M Customers Of Data Breach

Crypto Scams Rake In $5.6B A Year For Lowlifes, FBI Says

Cisco Merch Shoppers Stung In Magecart Attack

Predator Spyware Resurfaces With Fresh Infrastructure

New RAMBO Attack Allows Air-Gapped Data Theft Via RAM Radio Signals

Hackers Threaten to Leak Planned Parenthood Data

Plus: Kaspersky’s US business sold, Nigerian sextortion scammers jailed, and Europe’s controversial encryption plans return.

Recent SonicWall Firewall Vuln Exploited In The Wild

Russian Doppelganger Campaign Exposed

White House's New Fix For Cyber Job Gaps: Serve The Nation In Infosec

YubiKeys Are a Security Gold Standard—but They Can Be Cloned

Security researchers have discovered a cryptographic flaw that leaves the YubiKey 5 vulnerable to attack.

Russia’s Most Notorious Special Forces Unit Now Has Its Own Cyber Warfare Team

Unit 29155 of Russia’s GRU military intelligence agency—a team responsible for coup attempts, assassinations, and bombings—has branched out into brazen hacking operations with targets across the world.

North Korean Hackers Target Job Seekers With Fake App

Colorado Tops List Of Cyberattacks Per Capita In The US

Cicada Ransomware May Be A BlackCat/ALPHV Rebrand And Upgrade

FBI: North Korea Aggressively Hacking Cryptocurrency Firms

Transport For London Confirms Cyberattack

Intel Responds To SGX Hacking Research

Halliburton Says Hackers Removed Data In Cyberattack

Hacker Leaks Data Of 390 Million Users From VK, A Russian Social Network

Novel Attack On Windows Spotted In Phishing Campaign

RansomHub Claims 210 Victims In Just 6 Months

Taylor Swift Concert Terror Plot Was Thwarted by Key CIA Tip

Plus: China-linked hackers infiltrate US internet providers, authorities crack down on a major piracy operation, and a ransomware gang claims attacks during the Paris Olympics.

Researcher Sued For Sharing Data Stolen By Ransomware With Media

Tired Of Airport Security Queues? SQL Inject Yourself Into The Cockpit, Claims Reseachers

US Government Issues Advisory On Ransomware Group Blamed For Halliburton Cyberattack

Powerful Spyware Exploits Enable a New String of ‘Watering Hole’ Attacks

Suspected Russian hackers have compromised a series of websites to utilize sophisticated spyware exploits that are eerily similar to those created by NSO Group and Intellexa.

Brain Cipher Claims Attack On Olympic Venue, Promises 300 GB Data Leak

Unpatchable Zero Day In Surveillance Cam Is Being Exploited To Install Mirai

Dick's Sporting Goods Discloses Cyberattack

Notorious Iranian Hackers Have Been Targeting the Space Industry With a New Backdoor

In addition to its long-standing password spraying attacks, Microsoft says Iran-backed hacker group Peach Sandstorm—or APT 33—has developed custom malware dubbed “Tickler.”

From Copilot To Copirate: How Data Thieves Could Hijack Microsoft's Chatbot

Cybercrime And Sabotage Cost German Firms $300 Billion In Past Year

Malware Delivered Via Malicious Pidgin Plugin, Signal Fork

Hunters International Ransomware Gang Threatens To Leak US Marshals Data

EDR Killer Ransomware: What It Is, How To Repel

Hackers Infect ISPs With Malware That Steals Customer Credentials

AMD Internal Data Reportedly Offered For Sale

The US Navy Has Run Out of Pants

Plus: The US intelligence community formally blames Iran for Trump campaign hack, aircraft-tracking platform FlightAware says a “configuration error” exposed sensitive user data, and more.

Defenders Get A MoonPeak At North Korea's Malware Backbone

How To Manipulate The Execution Flow Of TOCTOU Attacks

Hackers Leak Their Own Operations Through Exposed Telegram Bot API Tokens

The US Government Wants You—Yes, You—to Hunt Down Generative AI Flaws

The AI ethics nonprofit Humane Intelligence and the US National Institute of Standards and Technology are launching a series of contests to get more people probing for problems in generative AI systems.

Deadbeat Dad Faked His Own Death By Hacking Government Databases

Cyberattack Disrupts Microchip Manufacturing Facilities

An AWS Configuration Issue Could Expose Thousands of Web Apps

Amazon has updated its instructions for how customers should more securely implement AWS's traffic-routing service known as Application Load Balancer, but it's not clear everyone will get the memo.

Windows Zero-Day Attack Linked To North Korea's Lazarus APT

National Public Data Says Breach Impacts 1.3 Million People

Bicycles Can Be Hacked Now

Unicoin Hints At Potential Data Meddling After G-Suite Compromise

The Slow-Burn Nightmare of the National Public Data Breach

Social Security numbers, physical addresses, and more—all available online. After months of confusion, leaked information from a background-check firm underscores the long-term risks of data breaches.

SolarWinds Web Help Desk Vulnerability Possibly Exploited As Zero Day