NCSC's ‘Proactive Notifications’ warns orgs of flaws in exposed devices

The UK's National Cyber Security Center (NCSC) announced the testing phase of a new service called Proactive Notifications, ...

Hackers are exploiting ArrayOS AG VPN flaw to plant webshells

Threat actors have been exploiting a command injection vulnerability in Array AG Series VPN devices to plant webshells and ...

Predator spyware uses new infection vector for zero-click attacks

The Predator spyware from surveillance company Intellexa has been using a zero-click infection mechanism dubbed "Aladdin" ...

Microsoft 365 license check bug blocks desktop app downloads

Microsoft is investigating and working to resolve a known issue that prevents customers from downloading Microsoft 365 ...

CISA warns of Chinese "BrickStorm" malware attacks on VMware servers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned network defenders of Chinese hackers backdooring ...

Contractors with hacking records accused of wiping 96 govt databases

U.S. prosecutors have charged two Virginia brothers arrested on Wednesday with allegedly conspiring to steal sensitive ...

How strong password policies secure OT systems against cyber threats

OT environments rely on aging systems, shared accounts, and remote access, making weak or reused passwords a major attack ...

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote ...

Critical flaw in WordPress add-on for Elementor exploited in attacks

Attackers are exploiting a critical-severity privilege escalation vulnerability (CVE-2025-8489) in the King Addons for ...

French DIY retail giant Leroy Merlin discloses a data breach

Leroy Merlin is sending security breach notifications to customers in France, informing them that their personal data was ...

Freedom Mobile discloses data breach exposing customer data

Freedom Mobile, the fourth-largest wireless carrier in Canada, has disclosed a data breach after attackers hacked into its ...

Google expands Android scam protection feature to Chase, Cash App in U.S.

Google is expanding support for its Android's in-call scam protection to multiple banks and financial applications in the ...