OpenSSH Flaw Allowing Full Root Shell Access Lurked for 15 Years
OpenSSH versions released over the past 15 years are affected by a vulnerability leading to full root shell access, and attacks cannot be spotted via…
Latest Cybersecurity News — Page 177
View all →
Medtronic discloses security incident after ShinyHunters claimed theft of 9M+ records
Medtronic discloses security incident after ShinyHunters claimed theft of 9M+ records Pierluigi Paganini April 27, 2026 Medtronic confirmed a breach of its IT systems after…
Major critical infrastructure supplier reports cyberattack
Itron, which makes devices that measure energy and water use, said its operations were continuing, despite the intrusion. Source link
Senators seek answers about hackers obtaining sensitive student data from ostensibly anonymous tip line
A bipartisan pair of senators want a company that operates a tip line for anonymously reporting school safety concerns to answer questions about hackers compromising…
AI is reshaping DevSecOps to bring security closer to the code
Transforming DevSecOps as a discipline Given the impact AI is having in transforming DevSecOps on a larger scale, IT, security, and development leaders need to…
NCSC launches SilentGlass device to block hardware-based cyber threats, secure vulnerable display links
The U.K. National Cyber Security Centre (NCSC) developed intellectual property for a new cybersecurity device and licensed Goldilock Labs to manufacture and sell it globally.…
CISA, NCSC warn Firestarter malware enabling persistent backdoor access to exposed Cisco firewall infrastructure
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) released a malware analysis report on Firestarter after examining a sample recovered during a forensic investigation, warning…
NIST Scales Back NVD CVE Enrichment: What to Know
NIST’s shift toward selective CVE enrichment creates significant visibility gaps for teams relying solely on the National Vulnerability Database. As AI accelerates vulnerability disclosure rates,…
FTC: Americans lost over $2.1 billion to social media scams in 2025
The U.S. Federal Trade Commission (FTC) warned of a massive increase in losses from social media scams since 2020, exceeding $2.1 billion in 2025. According…
Notepad++ Vulnerability Allows Attackers to Crash Application, Leak Memory Data
A security vulnerability has been identified in Notepad++, one of the most widely used open-source text editors among developers and IT professionals. The vulnerability CVE-2026-3008,…
New Malware Hides Behind Obfuscation and Staged Payloads
A newly identified malware campaign is leveraging advanced obfuscation techniques and multi-stage payload delivery to bypass traditional security defenses, according to recent analysis from Joe…
UNC6692 Hackers Exploit Microsoft Teams to Deploy SNOW Malware
A data theft campaign by a relatively new hacking group, UNC6692, has been discovered, in which hackers use social engineering and a custom modular toolset…