Stay Updated with the Latest Tech News
Get ahead of the curve with the latest insights, trends, and analysis in the tech world.
Browse by Category
Popular Topics
#General #Development #Mobile Development #Cloud & DevOps #Cybersecurity & Privacy #AI & Data Science #Hardware & Gadgets #Design & UXNearly 250,000 Impacted by Data Breach at Medical Associates of BrevardΒ
The BianLian ransomware group took credit for the cyberattack on the healthcare organization in January 2025. The post Nearly 250,000 Impacted by Data Breach at Medical Associates of Brevard appeared first on SecurityWeek.
Share on Facebook
Share in Tweet (rip twitter)
Share on LinkedIn
Share on Reddit
Share on Threads
Share on Bluesky
Chrome 140 Update Patches Sixth Zero-Day of 2025
An exploited type confusion in the V8 JavaScript engine tracked as CVE-2025-10585 was found by Google Threat Analysis Group this week. The post Chrome 140 Update Patches Sixth Zero-Day of 2025 appeared first on SecurityWeek.
Insight Partners Confirms Data Breach Result of Ransomware Attack
Venture capital firm Insight Partners says the data breach disclosed in February 2025 impacts over 12,000 people. The post Insight Partners Confirms Data Breach Result of Ransomware Attack appeared first on SecurityWeek.
Google Patches Chrome Zero-Day CVE-2025-10585 as Active V8 Exploit Threatens Millions
Google on Wednesday released security updates for the Chrome web browser to address four vulnerabilities, including one that it said has been exploited in the wild. The zero-day vulnerability in question is CVE-2025-10585, which has been described as a type confusion issue in the V8 JavaScript and WebAssembly engine. Type confusion vulnerabilities can have severe consequences as they can be
Mastering Digital Breadcrumbs to Stay Ahead of Evolving Threats
Digital forensics offers a challenging but rewarding career path for cybersecurity professionals willing to invest in specialized knowledge and continuous learning.
The Cloud Edge Is the New Attack Surface
The cloud now acts as the connecting infrastructure for many companies' assets β from IoT devices to workstations to applications and workloads β exposing the edge to threats.
Attack on SonicWallβs cloud portal exposes customersβ firewall configurations
The company confirmed to CyberScoop that an unidentified cybercriminal accessed SonicWallβs customer portal through a series of brute-force attacks. The post Attack on SonicWallβs cloud portal exposes customersβ firewall configurations appeared first on CyberScoop.
Microsoft Disrupts 'RaccoonO365' Phishing Service
Phishing-as-a-service (PhaaS) kits have become an increasingly popular way for lower-skill individuals who want to get into cybercrime.
'Scattered Lapsus$ Hunters,' Others Announce End of Hacking Spree
Though the groups have shared their decision to go dark, threat researchers say there are signs that it's business as usual.
TA558 Uses AI-Generated Scripts to Deploy Venom RAT in Brazil Hotel Attacks
The threat actor known as TA558 has been attributed to a fresh set of attacks delivering various remote access trojans (RATs) like Venom RAT to breach hotels in Brazil and Spanish-speaking markets. Russian cybersecurity vendor Kaspersky is tracking the activity, observed in summer 2025, to a cluster it tracks as RevengeHotels. "The threat actors continue to employ phishing emails with invoice
Virtual Event Today: Attack Surface Management Summit
SecurityWeek'sAttack Surface Management Virtual Summit is now LIVE and runs today from 11AM β 4PM ET. The post Virtual Event Today: Attack Surface Management Summit appeared first on SecurityWeek.
Irregular Raises $80 Million for AI Security Testing Lab
Irregular is testing the cybersecurity capabilities of AI models, including Anthropicβs Claude and OpenAIβs ChatGPT. The post Irregular Raises $80 Million for AI Security Testing Lab appeared first on SecurityWeek.
AI-Powered Sign-up Fraud Is Scaling Fast
The AI era means attackers are smarter, faster, and hitting you where you least expect it β your sign-up funnel.
RegScale Raises $30 Million for GRC Platform
RegScale has raised a total of more than $50 million, with the latest investment being used to enhance its platform and expand. The post RegScale Raises $30 Million for GRC Platform appeared first on SecurityWeek.
Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker
The campaign targeted US government, think tank, and academic entities involved in US-China relations, international trade, and economic policy. The post Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker appeared first on SecurityWeek.
From Quantum Hacks to AI Defenses β Expert Guide to Building Unbreakable Cyber Resilience
Quantum computing and AI working together will bring incredible opportunities. Together, the technologies will help us extend innovation further and faster than ever before. But, imagine the flip side, waking up to news that hackers have used a quantum computer to crack your company's encryption overnight, exposing your most sensitive data, rendering much of it untrustworthy. And with your
Chinese TA415 Uses VS Code Remote Tunnels to Spy on U.S. Economic Policy Experts
A China-aligned threat actor known as TA415 has been attributed to spear-phishing campaigns targeting the U.S. government, think tanks, and academic organizations utilizing U.S.-China economic-themed lures. "In this activity, the group masqueraded as the current Chair of the Select Committee on Strategic Competition between the United States and the Chinese Communist Party (CCP), as well as the
BreachForums Owner Sent to Prison in ResentencingΒ
Conor Fitzpatrick, who pleaded guilty in July 2023, was sentenced last year to time served and supervised release. The post BreachForums Owner Sent to Prison in Resentencing appeared first on SecurityWeek.
Raven Stealer Scavenges Chromium Data Via Telegram
The new lightweight stealer, distributed via underground forums and cracked software, demonstrates an important evolution in the stealth of commodity infostealing malware.
Scalekit Raises $5.5 Million to Secure AI Agent Authentication
The startup provides an authentication stack that secures both incoming authentication and outgoing agent actions. The post Scalekit Raises $5.5 Million to Secure AI Agent Authentication appeared first on SecurityWeek.
Decade-Old Pixie Dust Wi-Fi Hack Still Impacts Many Devices
NetRise has identified 20 device models from six vendors that are still vulnerable to Pixie Dust attacks. The post Decade-Old Pixie Dust Wi-Fi Hack Still Impacts Many Devices appeared first on SecurityWeek.
Hacking Electronic Safes
Vulnerabilities in electronic safes that use Securam Prologic locks: While both their techniques represent glaring security vulnerabilities, Omo says itβs the one that exploits a feature intended as a legitimate unlock method for locksmiths thatβs the more widespread and dangerous. βThis attack is something where, if you had a safe with this kind of lock, I could literally pull up the code right now with no specialized...
Rethinking AI Data Security: A Buyer's GuideΒ
Generative AI has gone from a curiosity to a cornerstone of enterprise productivity in just a few short years. From copilots embedded in office suites to dedicated large language model (LLM) platforms, employees now rely on these tools to code, analyze, draft, and decide. But for CISOs and security architects, the very speed of adoption has created a paradox: the more powerful the tools, the
Shai-Hulud Supply Chain Attack: Worm Used to Steal Secrets, 180+ NPM Packages Hit
The packages were injected with malicious code to harvest secrets, dump them to a public repository, and make private repositories public. The post Shai-Hulud Supply Chain Attack: Worm Used to Steal Secrets, 180+ NPM Packages Hit appeared first on SecurityWeek.
Scattered Spider Resurfaces With Financial Sector Attacks Despite Retirement Claims
Cybersecurity researchers have tied a fresh round of cyber attacks targeting financial services to the notorious cybercrime group known as Scattered Spider, casting doubt on their claims of going "dark." Threat intelligence firm ReliaQuest said it has observed indications that the threat actor has shifted their focus to the financial sector. This is supported by an increase in lookalike domains
RaccoonO365 Phishing Service Disrupted, Leader Identified
Microsoft and Cloudflare have teamed up to take down the infrastructure used by RaccoonO365. The post RaccoonO365 Phishing Service Disrupted, Leader Identified appeared first on SecurityWeek.
DOJ Resentences BreachForums Founder to 3 Years for Cybercrime and Possession of CSAM
The U.S. Department of Justice (DoJ) on Tuesday resentenced the former administrator of BreachForums to three years in prison in connection with his role in running the cybercrime forum and possessing child sexual abuse material (CSAM). Conor Brian Fitzpatrick (aka Pompompurin), 22, of Peekskill, New York, pleaded guilty to one count of access device conspiracy, one count of access device
RaccoonO365 Phishing Network Dismantled as Microsoft, Cloudflare Take Down 338 Domains
Microsoft's Digital Crimes Unit said it teamed up with Cloudflare to coordinate the seizure of 338 domains used by RaccoonO365, a financially motivated threat group that was behind a phishing-as-a-service (Phaas) toolkit used to steal more than 5,000 Microsoft 365 credentials from 94 countries since July 2024. "Using a court order granted by the Southern District of New York, the DCU seized 338
North Korean Group Targets South With Military ID Deepfakes
The North Korea-linked group Kimsuky used ChatGPT to create deepfakes of military ID documents in an attempt to compromise South Korean targets.
CrowdStrike to Acquire Pangea to Launch AI Detection and Response (AIDR)
Acquisition extends CrowdStrikeβs Falcon platform into AI security, introducing AI Detection and Response (AIDR) to protect enterprise models, agents, and applications across the full AI lifecycle. The post CrowdStrike to Acquire Pangea to Launch AI Detection and Response (AIDR) appeared first on SecurityWeek.
Microsoft seizes hundreds of phishing sites tied to massive credential theft operation
The company acted on a court order and collaborated with Cloudflare to seize RaccoonO365βs infrastructure, which was used to steal credentials from organizations in 94 countries. The post Microsoft seizes hundreds of phishing sites tied to massive credential theft operation appeared first on CyberScoop.
BreachForums founder resentenced to three years in prison
Conor Fitzpatrick had his initial sentence vacated for being too lenient. The post BreachForums founder resentenced to three years in prison appeared first on CyberScoop.
Ray Security Takes an Active Data Security Approach
The data security platform comes with a predictive capability that separates it from other offerings aimed at protecting enterprise data, the startup says.
Critical Bugs in Chaos Mesh Enable Cluster Takeover
"Chaotic Deputy" is a set of four vulnerabilities in the chaos engineering platform that many organizations use to test the resilience of their Kubernetes environments.
Self-Replicating 'Shai-hulud' Worm Targets NPM Packages
The newly emerged worm has spread across hundreds of open source software packages, stealing credentials and infecting other components without much direct attacker input.