The Computer Emergency Response Team of Ukraine (CERT-UA) has issued a warning about "SPECTR" malware attacks on the country's defense forces. These attacks are part of the "SickSync" espionage campaign.

Google and the Consortium of Cybersecurity Clinics awarded 15 colleges, universities, and community colleges up to $1 million each to open cybersecurity clinics at campuses.

Microsoft has decided to disable its Windows Recall feature on Copilot+ PCs by default. The feature, considered a security and privacy risk, was turned on by default, requiring users to go through checkboxes to opt out of the software.

Security researchers at Patchstack have discovered multiple security vulnerabilities in the WooCommerce Amazon Affiliates (WZone) plugin.

Los Angeles Unified School District (LAUSD) officials announced they are investigating a threat actor's claims that they're selling stolen databases containing records belonging to millions of students and thousands of teachers.

SolarWinds recently announced patches for multiple high-severity vulnerabilities in Serv-U and the SolarWinds Platform, including a bug reported by a penetration tester working with NATO.

Experts warn that the ransomware ecosystem has changed significantly in 2024, and organizations must adapt their defenses.

According to former National Cyber Security Centre CEO Ciaran Martin, the "Qilin" Ransomware-as-a-Service (RaaS) group is believed to have been behind the recent cyberattack that forced multiple London hospitals to declare a state of emergency.

Akamai warns that two Remote Code Execution (RCE) vulnerabilities in ThinkPHP that were patched five years ago are being exploited in a new wave of attacks.

"Muhstik," a Distributed Denial-of-Service (DDoS) botnet, exploited a now-patched Apache RocketMQ security flaw to co-opt vulnerable servers and grow.

ConnectWise reports that 94 percent of small and midsize businesses (SMBs) have faced at least one cyberattack, up from 64 percent in 2019.

According to security researchers at Artic Wolf Labs, a new ransomware operation named "Fog," launched in early May 2024, is using compromised VPN credentials to breach the networks of educational organizations in the U.S.