OpenAI tightens the screws on security to keep away prying eyes
Connie Loizos / techcrunch - OpenAI has reportedly overhauled its security operations to protect against corporate espionage. According to the Financial Times, the company accelerated an existing security clampdown after Chinese startup DeepSeek released a competing model in January,…
Back to Top / Tuesday, July 8, 2025, 3:20 am / permalink 9584 / 5 stories in 7 months
Public exploits released for CitrixBleed 2 NetScaler flaw, patch now
Lawrence Abrams / bleepingcomputer - Researchers have released proof-of-concept (PoC) exploits for a critical Citrix NetScaler vulnerability, tracked as CVE-2025-5777 and dubbed CitrixBleed2, warning that the flaw is easily exploitable and can successfully steal user session tokens. [...]
Back to Top / Monday, July 7, 2025, 6:20 pm / permalink 9569 / 4 stories in 7 months
Call of Duty: WWII Xbox PC Version Hauled Offline Amid Security Concerns
Vikki Blake / ign - Activision has pulled Call of Duty: WWII on Xbox PC offline just days after it was added to Game Pass, amid reports of hacking via Remote Code Execution (RCE).
Back to Top / Monday, July 7, 2025, 1:21 pm / permalink 9535 / 2 stories in 7 months
IT company Ingram Micro says ransomware targeted internal systems
therecord - Ingram Micro published a statement on Saturday saying it discovered “ransomware on certain of its internal systems,” which it immediately took offline.
Back to Top / Monday, July 7, 2025, 12:21 pm / permalink 9527 / 3 stories in 7 months
Phishing platforms, infostealers blamed as identity attacks soar
Connor Jones / theregister - Get your creds in order or risk BEC, ransomware attacks, orgs warned A rise in advanced phishing kits and info-stealing malware are to blame for a 156 percent jump in cyberattacks targeting user logins, say researchers.…
Back to Top / Monday, July 7, 2025, 10:21 am / permalink 9520 / 6 stories in 7 months
Let's Encrypt makes free security certificates available for IP addresses
Ian Barker / betanews - We’re all familiar with the idea of TLS/SSL security certificates that verify the identity of a website and ensure trust and security on the web by confirming that the site you’re visiting is what it says it is. Usually these relate to the domain name of …
Back to Top / Thursday, July 3, 2025, 7:20 am / permalink 9327 / 2 stories in 8 months
Ransomware crew Hunters International shuts down, hands out keys to victims
Connor Jones / theregister - Don't let their kind words sway you – leaders are still up to no good Ransomware gang Hunters International has shut up shop and offered decryption keys to all victims as a parting favor.…
Back to Top / Thursday, July 3, 2025, 7:20 am / permalink 9326 / 5 stories in 8 months
NimDoor crypto-theft macOS malware revives itself when killed
Bill Toulas / bleepingcomputer - North Korean state-backed hackers have been using a new family of macOS malware called NimDoor in a campaign that targets web3 and cryptocurrency organizations. [...]
Back to Top / Wednesday, July 2, 2025, 4:21 pm / permalink 9290 / 2 stories in 8 months
Qantas Breach Comprises Data of Up to 6 Million Customers
Danni Santana / cnet - The cyber incident was discovered on Monday and is under investigation, according to the airline.
Back to Top / Wednesday, July 2, 2025, 1:21 pm / permalink 9269 / 2 stories in 8 months
Australian airline Qantas reveals data theft impacting six million customers
Simon Sharwood / theregister - Frequent flyers’ info takes flight Australian airline Qantas on Wednesday revealed it fell victim to a cyberattack that saw information describing six million customers stolen.…
Back to Top / Tuesday, July 1, 2025, 9:20 pm / permalink 9235 / 5 stories in 8 months
International Criminal Court swats away 'sophisticated and targeted' cyberattack
Connor Jones / theregister - Body stays coy on details but alludes to similarities with 2023 espionage campaign The International Criminal Court (ICC) says a "sophisticated" cyberattack targeted the institution, the second such incident in two years.…
Back to Top / Tuesday, July 1, 2025, 12:20 pm / permalink 9207 / 2 stories in 8 months
Web giant Cloudflare to block AI bots from scraping content by default
cnbc - Starting Tuesday, every new web domain that signs up to Cloudflare will be given the option to allow — or block — AI crawlers.
Back to Top / Tuesday, July 1, 2025, 6:20 am / permalink 9186 / 12 stories in 8 months
US shuts down a string of North Korean IT worker scams
Iain Thomson / theregister - Resulting in two indictments, one arrest, and 137 laptops seized The US Department of Justice has announced a major disruption of multiple North Korean fake IT worker scams.…
Back to Top / Monday, June 30, 2025, 6:20 pm / permalink 9172 / 4 stories in 8 months
Mexican Drug Cartel Hacker Used Surveillance Tech to Target FBI Informants for Execution
AJ Dellinger / gizmodo - Surveillance against the state.
Back to Top / Monday, June 30, 2025, 4:21 pm / permalink 9160 / 6 stories in 8 months
Canada suspends Hikvision operations over national security concerns
therecord - Canadian Minister of Industry Mélanie Joly said in a statement that the determination was made with “information and evidence provided by Canada's security and intelligence community” and that she strongly encourages Canadians to “take note of this decisi…
Back to Top / Monday, June 30, 2025, 2:21 pm / permalink 9148 / 2 stories in 8 months
Millions of Brother Printers Are Full of Hackable Bugs
Lucas Ropek / gizmodo - Don't let your printer get hijacked.
Back to Top / Monday, June 30, 2025, 8:20 am / permalink 9110 / 4 stories in 8 months
Android 16 can warn you if a stingray device is spying on you
Matthew Mountjoy / mobilesyrup - The new Android 16 update has a feature that will warn you when someone is using a fake and insecure network for malicious purposes. The attack utilizes a device known as a “stingray.” The attacker sets up the device near a target that they want to observ…
Back to Top / Friday, June 27, 2025, 4:21 pm / permalink 9020 / 2 stories in 8 months
Prolific cybercrime gang now targeting airlines and the transportation sector
Zack Whittaker / techcrunch - The fresh wave of attacks targeting airlines comes soon after the hackers hit the U.K. retail sector and the insurance industry.
Back to Top / Friday, June 27, 2025, 3:21 pm / permalink 9014 / 5 stories in 8 months
Microsoft Evicts Antivirus From Windows Kernel After 2024 Crowdstrike Outage
Markus Kasanmascheff / winbuzzer - In response to the 2024 CrowdStrike crisis, Microsoft is overhauling Windows security by forcing antivirus software out of the kernel to boost stability. This major architectural shift, part of the 'Windows Resiliency Initiative,' redefines platform secur…
Back to Top / Friday, June 27, 2025, 12:21 pm / permalink 8995 / 4 stories in 8 months
Data spill in aisle 5: Grocery giant Ahold Delhaize says 2.2M affected after cyberattack
Connor Jones / theregister - Finance, health, and national identification details compromised Multinational grocery and retail megacorp Ahold Delhaize says upwards of 2.2 million people had their data compromised during its November cyberattack with personal, financial and health det…
Back to Top / Friday, June 27, 2025, 9:21 am / permalink 8981 / 2 stories in 8 months