Banking Groups Urge SEC To End Cyber Disclosure Mandate
Five major banking associations have formally petitioned the U.S. Securities and Exchange Commission (SEC) to repeal a rule that mandates public companies to disclose material…
Category: DarkReading
Versa Concerto Vulnerabilities Patched, Including A 10.0
Versa Networks has patched three vulnerabilities in its Concerto network security and SD-WAN orchestration platform, including one that scored a 10.0, the highest possible severity…
Commvault M365 Threat Could Be Part Of Broader SaaS Campaign
Nation-state threat actors targeting Commvault applications hosted in Microsoft Azure may be part of a broader campaign targeting Software-as-a-Service (SaaS) applications, the U.S. Cybersecurity and…
Cloudflare Fixes CVE-2025-4366 In Pingora OSS Framework
Cloudflare has alerted users of a security vulnerability—tracked as CVE-2025-4366—in the widely used Pingora OSS framework. This vulnerability, a request smuggling flaw, was discovered by…
Europol Tighten Grip On Dark Web Crime
In an international law enforcement operation, 270 individuals involved in dark web criminal activity have been arrested across ten countries. Coordinated by Europol, the operation,…
$223M Exploit Halts Cetus Protocol: Here’s What We Know
In the ever-volatile world of decentralized finance (DeFi), yet another major exploit has shaken investor confidence—this time with a staggering $223 million theft from Cetus…
AI Finds CVE-2025-37899 Zero-Day In Linux SMB Kernel
A zero-day vulnerability in the Linux kernel’s SMB (Server Message Block) implementation, identified as CVE-2025-37899, has been discovered using OpenAI’s powerful language model, o3. The…
$24M Seized As DOJ Indicts Alleged Qakbot Malware Architect
The U.S. Justice Department has unsealed an indictment against Rustam Rafailevich Gallyamov, a Russian national accused of running a cybercrime group responsible for one of…
Cellcom Cyberattack Disrupts Calls, CEO Says Data Safe
Cellcom, a regional wireless provider based in Wisconsin, is continuing efforts to restore full service following a cybersecurity incident that has disrupted customers’ ability to…
Gemini AI For Kids? Google Under Fire From Privacy Watchdogs
Google’s quiet rollout of its AI-powered Gemini chatbot to children under the age of 13 has sparked intense debate or I should say backlash, from…
OpenPGP Vulnerability CVE-2025-47934 Exposes Users
A flaw has been discovered in OpenPGP.js, a widely used JavaScript library for OpenPGP encryption. Tracked as CVE-2025-47934, the vulnerability allows threat actors to spoof…
Active Directory DMSA Attack Detailed By Researchers
The delegated Managed Service Account (dMSA) feature was introduced in Windows Server 2025 as a secure replacement for legacy service accounts and to prevent credential…