An invisible detonator and wafer-thin plastic explosives turned batteries into bombs

Microsoft is warning enterprise customers that, for almost a month, a bug caused critical logs to be lost, putting at risk companies that rely on this data to detect unauthorized activity.

Il Dipartimento di Giustizia degli Stati Uniti ha recentemente accusato gli operatori di "Anonymous Sudan" di aver condotto attacchi DDoS (Distributed

According to the researcher, the exposed documents were related to the companies Engled S.r.l. and Italian Gas S.r.l., which operate in the energy sector.

A new ClickFix campaign is luring users to fraudulent Google Meet conference pages showing fake connectivity errors that deliver info-stealing malware for Windows and macOS operating systems.

Per anni Carmelo Miano, oggi 24enne, ha violato gli archivi delle procure e le caselle mail di decine di magistrati senza essere scoperto

Technical blog by Stephan Berger (@malmoeb)

An Alabama man was arrested today by the FBI for his suspected role in hacking the SEC's X account to make a fake announcement that Bitcoin ETFs were approved.

The Justice Department said a 25-year-old Athens, Alabama, man used a SIM swap to break into the Securities and Exchange Commission's account on X to post false information about a bitcoin-related security.

North Korean IT professionals who trick Western companies into hiring them are stealing data from the organization's network and asking for a ransom to not leak it.

Plus, a zero-day vulnerability in Qualcomm chips, exposed health care devices, and the latest on the Salt Typhoon threat actor.

Eric Council Jr. and unnamed co-conspirators were allegedly behind the hack of the official @SECGov account on X.

Predictive Security Provider Supercharges U.S. Expansion with Leading Cybersecurity Investor to Arm Customers with Active Defense by Automatically Preempting Attacks Before Execution

Authorities in 28 countries orchestrated thousands of arrests and website shutdowns while also disrupting scam centers and their related human trafficking and money laundering operations.

The company told regulators at the U.S. Securities and Exchange Commission (SEC) that it reported the incident — which involves a variety of sensitive data on about 5,000 people — to federal law enforcement.

Kroger’s plans to roll out facial recognition tools at its grocery stores is attracting increased criticism from lawmakers, who warn that it could be exploited to increase the prices certain individuals pay for food and put customers’ personal data at risk.

The BianLian ransomware group has claimed the cyberattack on Boston Children's Health Physicians (BCHP) and threatens to leak stolen files unless a ransom is paid.

Japan's ruling Liberal Democratic Party (LDP) reported that a cyberattack temporarily disrupted its website earlier this week, coinciding with the start of the country’s general election campaign.

Learn about 5 powerful cloud security automations with Blink Ops to simplify security operations like S3 bucket monitoring, subdomain takeover detection and failed EC2 login detection.

Insurance giant Globe Life says an unknown threat actor attempted to extort money in exchange for not publishing data stolen from the company's systems earlier this year.

The U.S. government on Wednesday announced the arrest and charging of two Sudanese brothers accused of running Anonymous Sudan (a.k.a. AnonSudan), a cybercrime business known for launching powerful distributed denial-of-service (DDoS) attacks against a range of targets, including dozens of…

An unsealed federal grand jury indictment charges two Sudanese nationals with operating and controlling Anonymous Sudan, an online cybercriminal group responsible for tens of thousands of Distributed Denial of Service (DDoS) attacks against critical infrastructure, corporate networks, and government agencies.

SolarWinds releases patches for high-severity vulnerabilities. Immediate action is advised to secure affected products and protect IT infrastructure.

An operation calling itself Fire Cells Group made thousands of bomb threats against Ukrainian institutions. Authorities tied it to a cyberthreat group tracked as UAC-0050.

Novaya Gazeta Europe's website was knocked offline at times over several days by floods of junk traffic, making it the latest Russian independent media organization to face such disruption.

GitHub Warns Of Critical Vulnerabilities In GitHub Enterprise Server (GHES) That Require Immediate Patching To Secure Affected Versions

In this article we solve the most difficult SAS CTF challenge based on the APT technique to introduce and persist a kernel shellcode on Windows 7.

By Dmytro Korzhevin, Asheer Malhotra, Vanja Svajcer and Vitor Ventura.  * Cisco Talos has observed a new wave of attacks active since at least late 2023, from a Russian speaking group we track as “UAT-5647”, against Ukrainian government entities and unknown Polish entities.  * UAT-5647 is also known as  RomCom and is

Analyse the ClickFix tactic and related campaigns. Uncover a ClickFix campaign impersonating Google Meet and cybercrime infrastructure.