Bluesky hit by 24-hour DDoS attack as pro-Iran group claims responsibility
Bluesky hit by 24-hour DDoS attack as pro-Iran group claims responsibility Pierluigi Paganini April 21, 2026 Bluesky suffered a 24-hour DDoS attack that caused outages.…
Latest Cybersecurity News — Page 343
View all →
Lawmakers ponder terrorism designations, homicide charges over hospital ransomware attacks
Lawmakers at a hearing Tuesday explored ways to beef up punishments for ransomware attacks against hospitals, possibly by labeling them as more severe crimes. One…
New NGate variant hides in a trojanized NFC payment app
ESET Research has discovered a new variant of the NGate malware family that abuses a legitimate Android application called HandyPay, instead of the previously leveraged…
North Korea’s Lazarus suspected of stealing US$290 million in KelpDAO cyberattack
A notorious North Korean hacking group is likely behind the theft of nearly US$300 million in cryptocurrency over the weekend, an affected party has said,…
Privacy Commissioner: RentTech platforms must stop unfair and excessive personal information collection
A determination by Australia’s Privacy Commissioner has found the 2Apply rental technology platform, operated by InspectRealEstate, collected excessive personal information and did so by unfair…
SBOM erklärt: Was ist eine Software Bill of Materials?
Sie kennen Stücklisten vielleicht im Zusammenhang mit Neuwagen. In diesem Fall handelt es sich um ein Dokument, das jede Komponente, die sich in Ihrem neuen…
CISA warns organizations of supply chain compromise in Axios npm package delivering remote access trojan
The U.S. CISA (Cybersecurity and Infrastructure Security Agency) issued an alert warning of a supply chain compromise affecting the Axios npm package, urging organizations to…
Phishing and MFA exploitation: Targeting the keys to the kingdom
In 2025, attackers increasingly targeted weaknesses in multi-factor authentication (MFA) workflows, and phishing attacks leveraged valid, compromised credentials to launch lures from trusted accounts. The…
Attackers Love Your VPN To-Do List
This blog was updated on April 17 to include threat activity we’re observing with Nightmare-Eclipse’s BlueHammer, RedSun, and UnDefend exploitation techniques. One of the many…
UK probes Telegram, teen chat sites over CSAM sharing concerns
Ofcom, the United Kingdom’s independent communications regulator, has launched an investigation into Telegram based on evidence suggesting it’s being used to share child sexual abuse…
Unauthorized Group Gains Access to Anthropic’s Exclusive Cyber Tool Mythos
A group of unauthorized users has reportedly breached access controls surrounding Claude Mythos Preview, Anthropic’s powerful and closely guarded AI-driven cybersecurity tool, raising serious concerns…
Claude Code, Gemini CLI, and GitHub Copilot Exposed to Prompt Injection via GitHub Comments
Comment and Control prompt injection vulnerabilities discovered in AI agents, including Claude Code Security Review, Google Gemini CLI Action, and GitHub Copilot Agent. “Comment and…