Major Online Platform for Child Exploitation Dismantled
An international law enforcement operation has shut down Kidflix, a platform for child sexual exploitation with 1.8m registered users
Information Security Magazine
CrushFTP Vulnerability Exploited Following Disclosure Issues
11 hours 41 minutes ago
A critical authentication bypass flaw in CrushFTP is under active exploitation following a mishandled disclosure process
Amateur Hacker Leverages Russian Bulletproof Hosting Server to Spread Malware
13 hours 41 minutes ago
The cybercriminal uses the service of Proton66, an infamous Russian-based bulletproof hosting provider, to deploy malware
Sensitive Data Breached in Highline Schools Ransomware Incident
16 hours 11 minutes ago
Highline Public Schools revealed that sensitive personal, financial and medical data was accessed by ransomware attackers during the September 2024 incident
Over Half of Attacks on Electricity and Water Firms Are Destructive
17 hours 36 minutes ago
Semperis claims 62% of water and electricity providers were hit by cyber-attacks in the past year
Nearly 600 Phishing Domains Emerge Following Bybit Heist
17 hours 56 minutes ago
BforeAI researchers discover 596 suspicious Bybit-themed domains designed to defraud visitors
Stripe API Skimming Campaign Unveils New Techniques for Theft
1 day 10 hours ago
A novel skimming attack has been observed by Jscramber, using the Stripe API to steal payment information by injecting malicious scripts into pages
Royal Mail Investigates Data Breach Affecting Supplier
1 day 10 hours ago
A cyber threat actor has claimed to have leaked 144GB of data from Royal Mail users
Gray Bots Surge as Generative AI Scraper Activity Increases
1 day 11 hours ago
Gray bots surge as generative AI scraper activity increases, impacting web applications with millions of requests daily
Bybit Heist Fuels Record Crypto-Theft Surge, Says CertiK
1 day 12 hours ago
Hackers stole $1.67bn of cryptocurrencies in the first quarter of 2025, a 303% increase
North Korea's Fake IT Worker Scheme Sets Sights on Europe
1 day 15 hours ago
Google has found a significant increase in North Korean actors attempting to gain employment as IT workers in European companies, leading to data theft and extortion
Steam Surges to Top of Most Spoofed Brands List in Q1
1 day 17 hours ago
Gaming community Steam appeared most often in phishing emails and texts detected by Guardio in Q1 2025
ICO Apologizes After Data Protection Response Snafu
1 day 17 hours ago
The UK’s data protection regulator says it is overwhelmed with complaints from the public
WP Ultimate CSV Importer Flaws Expose 20,000 Websites to Attacks
2 days 11 hours ago
WP Ultimate CSV Importer flaws expose 20,000 websites to attacks enabling attackers to achieve full site compromise
Ukraine Blames Russia for Railway Hack, Labels It "Act of Terrorism"
2 days 12 hours ago
The CERT-UA investigation concluded that the attack’s techniques were “characteristic of Russian intelligence services”
New Phishing Attack Combines Vishing and DLL Sideloading Techniques
2 days 13 hours ago
A new attack targeting Microsoft Teams users used vishing, remote access tools and DLL sideloading to deploy a JavaScript backdoor
Google to Switch on E2EE for All Gmail Users
2 days 13 hours ago
Google is set to roll out end-to-end encryption for all Gmail users, boosting security, compliance and data sovereignty efforts
Cybercriminals Expand Use of Lookalike Domains in Email Attacks
2 days 15 hours ago
BlueVoyant found that the use of lookalike domains in email-based attacks is allowing actors to extend the types of individuals and organizations being targeted
Cyber Security and Resilience Bill Will Apply to 1000 UK Firms
2 days 17 hours ago
A thousand UK service providers will be expected to comply with the forthcoming Cyber Security and Resilience Bill
New Malware Variant RESURGE Exploits Ivanti Vulnerability
3 days 10 hours ago
CISA recommends immediate action to address malware variant RESURGE exploiting Ivanti vulnerability CVE-2025-0282
Checked
6 hours 41 minutes ago