Aggregator

England Hockey, the governing body for field hockey in England, is investigating a potential data breach after the AiLock ransomware gang listed it as a victim on its data leak site. [...]

A vulnerability labeled as critical has been found in Apache PDFBox up to 2.0.36/3.0.7. This affects the function PDComplexFileSpecification.getFilename of the component Example. Such manipulation leads to path traversal. This vulnerability is referenced as CVE-2026-23907. It is possible to launch the attack remotely. No exploit is available.

A vulnerability identified as critical has been detected in Google Chrome. Affected is an unknown function of the component Web Speech. This manipulation causes out-of-bounds read. The identification of this vulnerability is CVE-2026-3916. It is possible to initiate the attack remotely. There is no exploit available. You should upgrade the affected component.

A vulnerability classified as critical has been found in Google Chrome. This vulnerability affects unknown code of the component MediaStream. The manipulation leads to use after free. This vulnerability is listed as CVE-2026-3922. The attack may be initiated remotely. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability identified as problematic has been detected in Google Chrome on Android. This affects an unknown function of the component Downloads. This manipulation causes improper restriction of rendered ui layers. This vulnerability is handled as CVE-2026-3937. The attack can be initiated remotely. There is not any exploit available. You should upgrade the affected component.

Rescinded sanctions and reactivated contracts have created confusion about the Trump administration's spyware policy and where it draws the line.

A new malware strain dubbed Slopoly, likely created using generative AI tools, allowed a threat actor to remain on a compromised server for more than a week and steal data in an Interlock ransomware attack. [...]

For the U.S. healthcare ecosystem, the 2024 ransomware attack on Change Healthcare proved to be a supply-chain earthquake in showcasing critical third-party risk that entities now must carefully and urgently consider, said Erik Decker, CISO of Intermountain Health and a federal cyber adviser.

Medical device cyber challenges are among the most complex for manufacturers and healthcare delivery organizations for a variety of reasons, but there are some promising developments underway that could help ease the pain, said Phil Englert of the Health Information Sharing and Analysis Center.

Tehran-Linked Handala Hackers Disrupt Medtech Giant Stryker, Claim Verifone Breach
As the United States and Israel continue their war with Iran, Tehran-linked hacking group Handala has entered the fray, claiming credit for wiping systems at medical technology firm Stryker, which confirmed the attack, as well as breaching payment device maker Verifone, which denied being breached.

Secure Horizons' Sarah Armstrong-Smith on Building Collective Resilience
Identity has overtaken endpoints as the primary attack vector. Organizations must treat cybersecurity as an enterprise-scale risk, not an IT problem, to build the collective resilience that geopolitical threats now demand, says Sarah Armstrong-Smith, executive director at Secure Horizons.

Okta's Arkadiusz Krowczynski on Why Governing AI Agents Starts With Identity
AI agents are being deployed faster than enterprises can secure them, creating blind spots across access, ownership and governance. Half of companies lack any governance or a shutdown mechanism when agents go rogue, says Arkadiusz Krowczynski, principal product acceleration specialist at Okta.

Healthcare Hit Shows Symbols Matter as Iran Shifts Focus to Economic Damage
Cybersecurity experts say that the Handala "hacktivist" group that claimed credit for attacks against two American firms on Wednesday is run by the Iranian government. The shift to destructive cyberattacks parallels Iran's attempt to inflict greater economic damage on the United States and allies.

The number of FBI searches of data collected through the surveillance program known as Section 702 of the Foreign Intelligence Surveillance Act (FISA) between December 2024 to November 2025 rose to 7,413 from 5,518 the previous year.

A vulnerability marked as problematic has been reported in TP-Link Archer BE400 1.1.0/802.11. This impacts an unknown function of the component 802.11 Module. Performing a manipulation results in null pointer dereference. This vulnerability is reported as CVE-2025-14631. The attack is possible to be carried out remotely. No exploit exists.

A vulnerability classified as critical was found in ZTE MF258K ZTE_MF258kPRO_PLAY_V1.0.0B03/ZTE_MF258PRO_STD_V1.0.0B04. Affected by this issue is some unknown functionality of the component Setting Handler. The manipulation results in improper privilege management. This vulnerability is reported as CVE-2025-66315. The attack can be launched remotely. No exploit exists.

A vulnerability described as critical has been identified in Taipower App up to 3.4.4. Affected is an unknown function of the component HTTPS Connection Handler. The manipulation results in improper certificate validation. This vulnerability was named CVE-2026-3822. The attack may be performed from remote. There is no available exploit.

A vulnerability was found in MBS UBR-01 Mk II, UBR-02 and UBR-LON. It has been declared as critical. The impacted element is an unknown function of the file wwwupload.cgi. Such manipulation leads to missing authorization. This vulnerability is documented as CVE-2025-41765. The attack can be executed remotely. There is not any exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in MBS UBR-01 Mk II, UBR-02 and UBR-LON. It has been classified as critical. This impacts an unknown function of the component HTTP POST Request Handler. Performing a manipulation results in out-of-bounds write. This vulnerability is cataloged as CVE-2025-41766. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is recommended.