Six weeks after Adobe shipped an emergency fix, attackers have begun weaponizing SessionReaper — and most Magento stores still stand exposed. Security firm Sansec’s forensics team said it blocked ...

The U.S. government has apparently charged a former cybersecurity company official with stealing trade secrets with the intention of selling them to a Russian buyer, according to court documents and ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added five CVEs to its Known Exploited Vulnerabilities (KEV) catalog today, including Microsoft, Apple and Oracle vulnerabilities. CISA ...

Google’s new AI VRP offers up to $30,000 for finding security flaws in tools like Gemini. Report vulnerabilities, not content issues, for top rewards.

The EU threat landscape is dominated by hacktivism, DDoS attacks and ransomware, according to the new 2025 ENISA Threat Landscape report. ENISA, the EU Agency for Cybersecurity, released the report ...

The Scattered LAPSUS$ Hunters threat collective has launched a new dark web data leak site to attempt to extort victims of the group’s breaches of Salesloft and Salesforce environments. Scattered ...

Japan’s largest brewery, Asahi Group Holdings, is racing against time as it struggles to recover from a cyberattack that has severely disrupted its operations. The Asahi cyberattack, which was first ...

Hackers may have stolen sensitive customer data from a Red Hat GitLab instance. The Red Hat breach claims were made in Telegram posts by a group calling itself “Crimson Collective,” which said it ...

India’s Digital Personal Data Protection (DPDP) Act, 2023, is not just another law—it’s the culmination of years of intensive debate, deliberation, and expert inputs shaping India’s privacy future. As ...

Western Sydney University has recently fallen victim to a scam involving fraudulent emails sent to current students and alumni. These emails falsely claimed that recipients’ degrees had been revoked ...