Account Takeover Fraud Sees Sharp Spike, FBI Alerts Public
The Account Takeover fraud threat is accelerating across the United States, prompting the Federal Bureau of Investigation (FBI) to issue a new alert warning individuals,…
Category: DarkReading
Code Formatting Tools Share Secrets By The Thousands
Platforms that developers use to format their input unintentionally share “thousands” of secrets, according to new research. Researchers from watchTowr captured a dataset of more…
Apache Syncope CVE-2025-65998 Exposes AES Passwords
A critical security flaw has been uncovered in Apache Syncope, the widely used open-source identity management system, potentially putting organizations at risk of exposing sensitive…
SitusAMC Data Breach Exposes Corporate Information
SitusAMC, a major provider of back-end services for leading banks and lenders, has confirmed a SitusAMC data breach that resulted in the compromise of certain…
New Shai-Hulud Attack Hits Nearly 500 Npm Packages
A new Shai-Hulud supply chain attack has hit nearly 500 npm packages with a total of 132 million monthly downloads. The latest campaign follows one…
CISA Adds Oracle Identity Manager Vulnerability To KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added an Oracle Identity Manager vulnerability to its Known Exploited Vulnerabilities database after the SANS Internet…
CBI Arrests Fugitive Cybercrime Kingpin Running Fraud Call Centres
Indian authorities recovered Rs. 14 lakh (approximately $16,500) along with 52 laptops containing incriminating digital evidence when they arrested Vikas Kumar Nimar, a key cybercrime…
Grafana Flags Critical SCIM Vulnerability CVE-2025-41115
Grafana Labs has issued a warning regarding a maximum-severity security flaw, identified as CVE-2025-41115, affecting its Enterprise product. The vulnerability can allow attackers to impersonate…
CrowdStrike Fires Suspicious Insider Linked To Hackers
Cybersecurity firm CrowdStrike confirmed the termination of a “suspicious insider” who allegedly shared internal information with hackers. The move came after an internal investigation revealed…
Scattered Spider Teens Plead Not Guilty In UK Court
Two alleged members of the Scattered Spider threat group pled not guilty today to charges related to a cyberattack on Transport for London in August…
Android Malware Records Encrypted Messages, Hijacks Devices
Security researchers have identified a new Android banking trojan that does much more than steal banking credentials. It can also record encrypted messages and essentially…
City Of Middletown Cyberattack: New Recovery Update Issued
The City of Middletown has released a new update as part of its ongoing cybersecurity restoration following the significant City of Middletown cyberattack that disrupted…