Chinese-Speaking Cybercrime Group Hijacks IIS Servers for SEO Fraud
Cisco Talos has identified a Chinese-speaking cybercrime group that targets high-value Internet Information Services (IIS) for SEO fraud
Information Security Magazine
Hackers Target Unpatched Flaws in Oracle E-Business Suite
10 hours 4 minutes ago
Patches for the targeted vulnerabilities were released in Oracle’s July 2025 security update
WestJet Data Breach Impacts 1.2 Million Customers
10 hours 49 minutes ago
WestJet revealed that customer personal details and membership data were stolen in the June 2025 attack
US Government Shutdown to Slash Federal Cybersecurity Staff
1 day 5 hours ago
The US government shutdown is estimated to result in around 65% of CISA staff being furloughed, with fears that threat actors will exploit critical security gaps
Extortion Emails Sent to Executives by Self-Proclaimed Clop Gang Member
1 day 6 hours ago
The initial investigation shows early signs of links with the FIN11 and Clop cyber extortion groups
Confucius Shifts from Document Stealers to Python Backdoors
1 day 7 hours ago
The Confucius cyber-espionage group has shifted its tactics from document-focused stealers to Python-based backdoors like AnonDoor
Free VPN Apps Found Riddled With Security Flaws
1 day 8 hours ago
A new study by Zimperium has revealed serious risks in free VPN apps, exposing users to privacy threats and security flaws
Expired US Cyber Law Puts Data Sharing and Threat Response at Risk
1 day 10 hours ago
Experts argued that the lapse of the Cybersecurity Information Sharing Act could have far-reaching consequences in US national cyber defenses
Forrester: Agentic AI-Powered Breach Will Happen in 2026
1 day 11 hours ago
Forrester predicts agentic AI will be responsible for a major data breach in 2026
Phishing Dominates EU-Wide Intrusions, says ENISA
1 day 12 hours ago
ENISA reveals phishing and vulnerability exploitation accounted for majority of intrusions in past year
Broadcom Issues Patches for VMware NSX and vCenter Security Flaws
2 days 5 hours ago
Broadcom has released security patches for critical flaws affecting several VMware products
Shortcut-based Credential Lures Deliver DLL Implants
2 days 6 hours ago
A new campaign has been observed using malicious Windows shortcuts in credential-themed ZIP files to deploy PowerShell script
AI Tops Cybersecurity Investment Priorities, PwC Finds
2 days 10 hours ago
PwC found that AI security has become a top investment priority in cyber budgets over the next 12 months, ahead of cloud and network security
New China-Aligned Hackers Hit State and Telecom Sectors
2 days 11 hours ago
Phantom Taurus is the latest formally identified cyber-espionage group aligned with Chinese state interest
Campaign Warns Solicitors and House Buyers of Payment Diversion Fraud
2 days 11 hours ago
The NCA warns that house buyers could face losses of over £80,000 from a type of BEC called payment diversion fraud
ICO: Imgur’s UK Decision Won’t Prevent Regulatory Fine
2 days 12 hours ago
Image-sharing platform Imgur has blocked its services within the UK, following a regulatory notice from the ICO
Smishing Campaigns Exploit Cellular Routers to Target Belgium
3 days 5 hours ago
New smishing attacks exploit Milesight routers to send phishing texts targeting Belgian users
New Android RAT Klopatra Targets Financial Data
3 days 6 hours ago
New Android RAT Klopatra is targeting financial institutions using advanced evasion techniques
US Cuts Federal Funding for MS-ISAC Cybersecurity Program
3 days 7 hours ago
The Trump administration wants CISA to transition to a “new model” for supporting local government agencies’ cyber strategy
Gemini Trifecta Highlights Dangers of Indirect Prompt Injection
3 days 8 hours ago
Tenable researchers have discovered three vulnerabilities in Google’s Gemini GenAI tool
Checked
2 hours 4 minutes ago