Canadian Man Arrested for Operating Kimwolf Botnet
The US Justice Department announced on Thursday that a Canadian man has been arrested for operating the recently disrupted Kimwolf DDoS botnet. The suspect, 23-year-old…
Latest Cybersecurity News — Page 169
View all →
Cisco fixed maximum severity flaw CVE-2026-20223 in Secure Workload
Cisco fixed maximum severity flaw CVE-2026-20223 in Secure Workload Pierluigi Paganini May 21, 2026 Cisco fixed a critical Secure Workload flaw (CVE-2026-20223) that could let…
New York regulator calls for additional cyber mitigation amid heightened threat environment
The guidance from the state Department of Financial Services arises from concerns about frontier AI and threats linked to the Iran war and other geopolitical…
FBI warns about fast-growing phishing kit targeting Microsoft 365 users
The FBI is warning organizations and defenders about Kali365, a growing phishing-as-a-service platform that retrieves Microsoft 365 access tokens, issuing a public service announcement Thursday. …
Police take down VPN service (this time with a good reason)
While First VPN’s fates seems well-deserved, there are concerns about wider attempts by governments and law enforcers to clamp down on users of VPN services.…
Police boast of hacking VPN where criminals “believed themselves to be safe”
European law enforcement say they hacked into a VPN (virtual private network) service used for ransomware attacks and other crimes, and identified thousands of users…
Microsoft recognized as a Leader in The Forrester Wave for Workforce Identity Security Platforms
Identity is the backbone of modern cybersecurity. Every access decision carries risk, across employees, partners, devices, workloads, and an expanding set of AI-powered agents. But…
Metasploit Wrap Up 05/22/2026
Another week, another authentication bypass Our humble Metasploit weekly(ish) blog has been blessed with a new network component vulnerability. The dynamic duo of @sfewer-r7 and…
Former US execs plead guilty to aiding tech support scammers
Two former executives of a call-tracking and analytics company pleaded guilty to concealing a years-long tech support fraud scheme that victimized individuals worldwide. Former CEO…
Russian Threat Groups Use RDP, VPN, Supply Chain Attacks, and Social Engineering for Initial Access
Russian state-sponsored threat groups significantly stepped up their cyber operations in 2025, using a range of methods to break into targeted systems. From exploiting remote…
Google’s Exploit Code Release Raises Concern Over Unfixed Chromium Security Bug
Google’s recent release of proof-of-concept (PoC) exploit code for a still-unpatched Chromium vulnerability has sparked significant concern across the cybersecurity community. The flaw, first reported…
FBI Warns of Kali365 Phishing Service Targeting Microsoft 365 Account
In its latest alert, the Federal Bureau of Investigation (FBI) is warning about a new Phishing-as-a-Service (PaaS) platform called Kali365 that specifically targets Microsoft 365…