Internet Security

President Trump blocks $2.9M Emcore chip sale over security concerns

January 4, 2026 add comment
Trump ordered the divestment of a $2.9M chip deal, citing U.S. national security risks if HieFo retained control of Emcore ’s technology. President Trump ordered the divestment of a... Read more »

French authorities investigate AI ‘undressing’ deepfakes on X

January 3, 2026 add comment
France will probe AI-generated sexual deepfakes made with Grok on X after hundreds of women and teens reported “undressed” images shared online. French authorities will investigate AI-generated sexually explicit... Read more »

Thousands of ColdFusion exploit attempts spotted during Christmas holiday

January 3, 2026 add comment
GreyNoise observed thousands of attacks targeting about a dozen Adobe ColdFusion vulnerabilities during the Christmas 2025 holiday. GreyNoise reports a coordinated campaign exploiting about a dozen Adobe ColdFusion vulnerabilities,... Read more »

Two U.S. cybersecurity professionals plead guilty in BlackCat/Alphv ransomware case

January 2, 2026 add comment
Two U.S. cybersecurity professionals pleaded guilty to charges tied to their roles in BlackCat/Alphv ransomware attacks. The U.S. cybersecurity professionals Ryan Goldberg and Kevin Martin pleaded guilty to charges... Read more »

Covenant Health data breach after ransomware attack impacted over 478,000 people

January 2, 2026 add comment
Covenant Health suffered a ransomware attack by the Qilin group in May 2025, compromising data of over 478,000 individuals. Covenant Health, Inc., based in Andover, Massachusetts, is a healthcare... Read more »

Phishing campaign abuses Google Cloud Application to impersonate legitimate Google emails

January 2, 2026 add comment
Researchers uncovered a phishing campaign abusing Google Cloud Application Integration to send emails posing as legitimate Google messages. Check Point researchers have revealed a phishing campaign that abuses Google... Read more »

IBM warns of critical API Connect bug enabling remote access

January 2, 2026 add comment
IBM disclosed a critical API Connect flaw (CVE-2025-13915, CVSS 9.8) that allows remote access via an authentication bypass. IBM addressed a critical API Connect vulnerability, tracked as CVE-2025-13915 (CVSS... Read more »

Trust Wallet confirms second Shai-Hulud supply-chain attack, $8.5M in crypto stolen

January 1, 2026 add comment
Trust Wallet says a second Shai-Hulud supply-chain attack likely compromised its Chrome extension, leading to the theft of about $8.5M in crypto. Trust Wallet linked a second Shai-Hulud supply-chain... Read more »

React2Shell under attack: RondoDox Botnet spreads miners and malware

January 1, 2026 add comment
RondoDox botnet exploits the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js servers with malware and cryptominers. CloudSEK researchers warn that the RondoDox botnet is exploiting the critical React2Shell flaw (CVE-2025-55182)... Read more »

ESA disclosed a data breach, hackers breached external servers

December 31, 2025 add comment
ESA confirmed a data breach after a hacker offered to sell stolen data, confirming that external science servers were compromised. The European Space Agency (ESA) disclosed a data breach... Read more »
Subscribe to our Newsletter