Key members of Hellcat ransomware group identified, controversy around CrushFTP flaw CVE, NYU website hacked and defaced.

Firefox developers have determined that their browser is affected by a vulnerability similar to the recent Chrome sandbox ...

A threat actor tracked as Morphing Meerkat abuses DNS mail exchange (MX) records to deliver spoofed login pages.

The Grandoreiro banking trojan has reemerged in fresh phishing campaigns targeting users in Latin America and Europe, ...

HTTPS certificate issuance now requires Multi-Perspective Issuance Corroboration and linting to improve validation.

Splunk patches high-severity remote code execution and information disclosure flaws in Splunk Enterprise and Secure Gateway App.

Forescout has found dozens of vulnerabilities in solar power systems from Sungrow, Growatt and SMA, and patches have been ...

The UK ICO has fined Advanced Computer Software Group £3 million ($3.8 million) over a 2022 data breach resulting from a ransomware attack.

US defense contractor MORSE Corp has agreed to pay $4.6 million to settle allegations over its cybersecurity failures.

T-Mobile paid $33 million in a private arbitration process over a SIM swap attack leading to cryptocurrency theft.

GetReal Security has raised $17.5 million in series A funding to combat deepfakes, impersonation, and other AI-generated threats.

Russian-speaking espionage group RedCurl has been deploying ransomware on victims’ networks in a recent campaign.