Category: Bleeping Computer

Hackers are exploiting a critical unauthenticated privilege escalation vulnerability in the OttoKit WordPress plugin to create rogue admin accounts on…

A new phishing kit named ‘CoGUI’ sent over 580 million emails to targets between January and April 2025, aiming to…

PowerSchool is warning that the hacker behind its December cyberattack is now individually extorting schools, threatening to release the previously stolen student…

CISA warned critical infrastructure organizations of “unsophisticated” threat actors actively targeting the U.S. oil and natural gas sectors. While these attacks use very basic…

Passwords have long been the bedrock of online security, but the vulnerabilities are obvious, ranging from human error to phishing…

Passwords have long been the bedrock of online security, but the vulnerabilities are obvious, ranging from human error to phishing…

The Play ransomware gang has exploited a high-severity Windows Common Log File System flaw in zero-day attacks to gain SYSTEM privileges…

A U.S. federal jury has ordered Israeli spyware vendor NSO Group to pay WhatsApp $167,254,000 in punitive damages and $444,719…

Medical device company Masimo Corporation warns that a cyberattack is impacting production operations and causing delays in fulfilling customers’ orders….

​Polish authorities have detained four suspects linked to six DDoS-for-hire platforms, believed to have facilitated thousands of attacks targeting schools,…

Microsoft says the April 2025 security updates are causing authentication issues on some Windows Server 2025 domain controllers. The list…

A proof-of-concept exploit has been publicly released for a maximum severity Apache Parquet vulnerability, tracked as CVE-2025-30065, making it easy…