API Attack Awareness: Broken Object Level Authorization (BOLA)
For this Cybersecurity Awareness Month, we thought it important to draw attention to some of the most common and dangerous...
Read more →News Archive
View All →
Android spyware campaigns impersonate Signal and ToTok messengers
Two new spyware campaigns that researchers call ProSpy and ToSpy lured Android users with fake upgrades or plugins for the...
Read more →
Malicious ZIP Files Use Windows Shortcuts to Drop Malware
A new wave of phishing attacks has been detected by the cybersecurity research firm, Blackpoint Cyber, that is exploiting users’...
Read more →
Cybercriminals Claim Theft of Data From Oracle E-Business Suite Customers
A significant number of organizations have received extortion emails from hackers who claim to have stolen sensitive information from their...
Read more →
Beware of Android Spyware Disguised as Signal Encryption Plugin and ToTok Pro
Cybersecurity researchers have discovered two Android spyware campaigns dubbed ProSpy and ToSpy that impersonate apps like Signal and ToTok to...
Read more →
Zania Raises $18 Million for AI-Powered GRC Platform
AI-powered security governance, risk, and compliance (GRC) startup Zania has announced raising $18 million in a Series A funding round...
Read more →
Red Hat Data Breach – Threat Actors Claim Breach of 28K Private GitHub Repositories
An extortion group known as the Crimson Collective claims to have breached Red Hat’s private GitHub repositories, making off with...
Read more →
Termix Docker Image Leaking SSH Credentials (CVE-2025-59951)
A critical vulnerability in the official Termix Docker image puts users at risk of exposing sensitive SSH credentials. The flaw...
Read more →
Navigating the AI Era Threat
Ransomware has evolved from a niche hacker tactic into a mainstream threat, and small businesses are increasingly in the crosshairs....
Read more →
ProSpy and ToSpy: New spyware families impersonating secure messaging apps
ESET researchers have found two Android spyware campaigns aimed at people looking for secure messaging apps such as Signal and...
Read more →
Sendit tricked kids, harvested their data, and faked messages, FTC claims
The Federal Trade Commission (FTC) has sued Sendit’s parent company, saying it signed up children under 13, collected their personal...
Read more →
Chrome Security Update – Patch for 21 Vulnerabilities that Allows Attackers to Crash Browser
Google has released Chrome 141 to address 21 security vulnerabilities, including critical flaws that could allow attackers to crash browsers...
Read more →