Russian Lynk group leaks sensitive UK MoD files, including info on eight military bases

Russian hackers stole and leaked MoD files on eight RAF and Navy bases, exposing staff data in a “catastrophic” cyberattack via Dodd Group breach. Russian cybercrime group Lynx breached... Read more »

Hard-coded credentials found in Moxa industrial security appliances, routers (CVE-2025-6950)

Moxa has fixed 5 vulnerabilities in its industrial network security appliances and routers, including a remotely exploitable flaw (CVE-2025-6950) that may result in complete system compromise. There’s no mention... Read more »

China-linked Salt Typhoon hackers attempt to infiltrate European telco

Salt Typhoon, the China-linked APT group that has a penchant for targeting telecommunications companies, has been spotted trying to sneak into yet another one. The intrusion “Darktrace observed activity... Read more »

WatchGuard VPN Flaw Gives Hackers Full Firewall Control

A severe vulnerability in Fireware allows remote attackers to run arbitrary code without authentication, effectively transforming a trusted security device into a potential entry point for exploitation. The post... Read more »

CAPI Backdoor targets Russia’s auto and e-commerce sectors

A new campaign targets Russia’s auto and e-commerce sectors using a previously unknown .NET malware called CAPI Backdoor. Cybersecurity researchers at Seqrite Labs uncovered a new campaign, tracked as... Read more »

Jamf adds AI forensics to help organizations detect and respond to mobile threats

Jamf announced the beta release of AI Analysis for Jamf Executive Threat Protection, a new AI-powered capability designed to accelerate and simplify mobile forensic analysis. Jamf Executive Threat Protection... Read more »

Prosper Confirms Data Breach Impacting 17 Million Users

Prosper confirmed a major data breach affecting 17 million people. Learn what happened, why it matters for fintech security, and how IT leaders can respond. The post Prosper Confirms... Read more »

Why Unmonitored JavaScript Is Your Biggest Holiday Security Risk

Think your WAF has you covered? Think again. This holiday season, unmonitored JavaScript is a critical oversight allowing attackers to steal payment data while your WAF and intrusion detection... Read more »

F5 breach exposes 262,000 BIG-IP systems worldwide

Over 262K F5 BIG-IP devices exposed after threat actors stole source code and data on undisclosed flaws in a recent F5 breach. Over 262,000 F5 BIG-IP devices are exposed... Read more »

New SAP NetWeaver Bug Lets Attackers Take Over Servers Without Login

SAP has rolled out security fixes for 13 new security issues, including additional hardening for a maximum-severity bug in SAP NetWeaver AS Java that could result in arbitrary command... Read more »
Subscribe to our Newsletter