The Akira ransomware gang recently claimed it breached the network of Nissan Australia, the Australian division of Japanese car maker Nissan.

OpenAI has addressed a ChatGPT data exfiltration bug that could leak conversation details to an external URL. However, the mitigation is not perfect, according to security researcher Johann Rehberger, who discovered the flaw.

A threat actor called UAC-0099 has been linked to attacks against Ukraine, some of which exploit a high-severity flaw contained by WinRAR software to deliver the LONEPAGE malware strain.

An unidentified threat actor conducted various social engineering campaigns against American and Canadian organizations in different industries to infect them with the multifaceted DarkGate malware.

According to Zscaler, threats over HTTPS have increased by 24 percent since 2022, highlighting the sophistication of cybercriminal tactics that target encrypted channels.

Ubisoft just started investigating whether it suffered a breach after images of the company's internal software and developer tools were leaked online.

Europol has recently notified over 400 websites that their online shops have been hacked with malicious scripts that steal debit and credit cards from customers making purchases.

UK telco EE has recently warned customers they could be deluged with millions of scam SMS messages on December 23 as fraudsters look to capitalize on last-minute Christmas shopping.

The Donald W. Wyatt Detention Facility in Rhode Island has recently disclosed a data breach impacting the personal information of roughly 2,000 inmates, staff, and vendors.

The National Institute of Standards and Technology (NIST) released two draft publications aimed at helping organizations transition from traditional encryption schemes to ones that can withstand attacks from a potential quantum computer.

Trustwave researchers have detailed a new phishing method that aims to bypass Instagram accounts' two-step verification. A misleading email message and login page lead users to reveal their credentials and a temporary six-digit backup code.

Prompt injection is an unresolved issue that poses a significant threat to the integrity of Large Language Models (LLMs).