The Royal Mail postal service and courier company in the UK had an open redirect vulnerability on one of its websites, exposing its customers to phishing attacks and malware infections.

Microsoft has recently introduced a new protective feature in the Authenticator app to block notifications that appear suspicious based on specific checks performed during the account login stage.

A hacking group backed by the North Korean government is targeting financial institutions with malware that affects macOS.

Since January 2023, the Iran-linked Agonizing Serpens group, also known as Agrius, BlackShadow, Pink Sandstorm, and DEV-0022, has been launching destructive cyberattacks against Israeli organizations in the higher education and technology sectors

According to security researchers at Juniper Research, the volume of global roaming fraud traffic is set to increase by a staggering 700% over the coming five years as scammers look to tap a growing market.

Viktor Markopoulos, a CloudDefense.ai security researcher, discovered millions of Chinese citizen identity numbers leaking online after an e-commerce store left its database exposed on the Internet.

Attackers are exploiting the recently patched critical Atlassian Confluence authentication bypass flaw to encrypt victims' files in Cerber ransomware attacks.

SideCopy, a Pakistan-linked threat actor, has been using the recent WinRAR security vulnerability in its attacks against Indian government entities to deliver various Remote Access Trojans (RATs) such as AllaKore RAT, Ares RAT, and DRat.

According to Quantum Xchange, cryptography is often taken for granted because it is rarely evaluated or checked, which could have disastrous consequences for businesses as attack surfaces expand, the cost of a data breach rises, and the age of qu

The Allied Pilots Association (APA) says it has made progress in restoring its systems after falling victim to a file-encrypting ransomware attack last week.

The Gootloader Group is using GootBot, a new destructive post-compromise tool that spreads bots throughout enterprise environments following infiltration.

Five Canadian hospitals have recently confirmed that patient and employee data that was stolen in a ransomware attack has been leaked online.