Lookout details EagleMsgSpy, a surveillance tool used by Chinese law enforcement to collect data from Android devices.
Oasis Security has disclosed AuthQuake, a method for bypassing Microsoft MFA within an hour without user interaction.
Law enforcement agencies in 15 countries cooperated in taking down 27 websites selling DDoS-for-hire services.
Cleo has released patches for the exploited vulnerability and security firms have detailed the malware delivered in attacks.
Two vulnerabilities in the Hunk Companion and WP Query Console WordPress plugins allow attackers to backdoor websites.
Cupertino ships iOS 18.2 and macOS Sequoia 15.2 patches to fix data leakage, sandbox escapes and code exection ...
The doughnut and coffeehouse chain confirmed a cyberattack took out parts of its online ordering system in parts of the United States.
Academic researchers devise BadRAM, a new attack that uses $10 equipment to break AMD’s latest trusted execution environment protections.
Google has released two Chrome 131 updates in a week to resolve multiple high-severity memory safety vulnerabilities.
Live Attack Demonstration: A step-by-step walkthrough of a deepfake and BEC attack, where hackers use email, video, and voice ...
Atlassian and Splunk on Tuesday announced patches for over two dozen vulnerabilities, including high-severity flaws.
Exploitation of a vulnerability affecting Cleo file transfer tools has been linked to the new Termite ransomware group.