WestJet confirms recent breach exposed customers’ passports
Canadian airline WestJet is informing customers that the cyberattack disclosed in June compromised their sensitive information, including passports and ID documents....
Read more →News Archive
View All →
Threat Actors Hijacking MS-SQL Server to Deploy XiebroC2 Framework
A sophisticated attack campaign targeting improperly managed Microsoft SQL servers has emerged, deploying the XiebroC2 command and control framework to...
Read more →
Sendit sued by the FTC for illegal collection of children data
The Federal Trade Commission (FTC) is suing Sendit’s operating company and its CEO for unlawful collection of data from underage...
Read more →
CISA Warns of Libraesva ESG Command Injection Vulnerability Actively Exploited in Attacks
In late September 2025, the Cybersecurity and Infrastructure Security Agency (CISA) issued a public alert regarding the active exploitation of...
Read more →
$50 Battering RAM Attack Breaks Intel and AMD Cloud Security Protections
A group of academics from KU Leuven and the University of Birmingham has demonstrated a new vulnerability called Battering RAM...
Read more →
New MatrixPDF toolkit turns PDFs into phishing and malware lures
A new phishing and malware distribution toolkit called MatrixPDF allows attackers to convert ordinary PDF files into interactive lures that...
Read more →
Chinese APT Phantom Taurus Targeted MS Exchange Servers Over 3 Years
Researchers at Palo Alto Networks say a Chinese-linked cyberespionage group has been targeting foreign ministries, embassies, and military-related communications by...
Read more →
VMware Vulnerability CVE-2025-41244 Exploited For A Year
A newly listed VMware zero-day vulnerability has been actively exploited by Chinese state-sponsored threat actors for almost a year, according...
Read more →
DOJ, Georgia Tech affiliate company settle over alleged failure to meet DOD contract cyber requirements
A company affiliated with the Georgia Institute of Technology agreed to pay $875,000 to the U.S. government to settle a...
Read more →
Windows 11 2025 Update (25H2) is now available, Here’s what’s new
Today, Microsoft announced the general availability of Windows 11 25H2, also known as Windows 11 2025 Update. Windows 11 25H2...
Read more →
APT35 Hackers Attacking Government, Military Organizations to Steal Login Credentials
In recent months, a surge in targeted intrusions attributed to the Iranian-aligned threat group APT35 has set off alarm bells...
Read more →
Cloud provider publishes ‘tech sovereignty’ plan for UK
The government should reframe its technology strategy to ensure the UK does not lose control of its digital infrastructure and...
Read more →