Software Supply Chain Attacks Set Records In October
Software supply chain attacks hit levels in October that were more than 30% higher than any previous month. Threat actors on dark web data leak…
Software supply chain attacks hit levels in October that were more than 30% higher than any previous month. Threat actors on dark web data leak…
Hacktivist attacks on critical infrastructure doubled over the course of the third quarter, according to a new Cyble report. Hacktivist attacks on industrial control systems…
BadCandy, a Persistent Access Threat to Network Edge Devices BadCandy is a Lua-based web shell implant deployed on compromised Cisco IOS XE routers and switches…
The Qilin ransomware group has been by far the most active ransomware group over the last seven months, so two new research reports detailing some…
Ransomware attacks have soared 50% in 2025 despite major changes among the leading ransomware groups, according to a new Cyble report. Through October 21, there…
Fewer organizations are paying the ransom when confronted with a ransomware attack – but those that do make ransomware payments are paying much more. That’s…
Spanish fashion retailer Mango has confirmed a data breach after one of its external marketing service providers suffered unauthorized access to limited customer information. The…
A new trend of Android malware is sweeping across India, leveraging the guise of Regional Transport Office (RTO) apps to steal financial data, mine cryptocurrency,…
Adobe has issued a set of security updates addressing more than 35 vulnerabilities across its product portfolio. These updates include fixes for several critical flaws…
Florida Attorney General James Uthmeier has filed a civil enforcement action against Roku, Inc. and its Florida subsidiary, accusing the streaming platform of violating the…
The Dutch government has invoked the Goods Availability Act (Wet Beschikbaarheid Goederen) to assert control over decisions made by Chinese-owned semiconductor firm Nexperia, citing risks…
Oracle rushed out a patch over the weekend for a new E-Business Suite vulnerability that can be exploited remotely without authentication. The vulnerability – CVE-2025-61884…