Senators push to renew cyber grant program for state, local governments
02
Dec
2025

Senators push to renew cyber grant program for state, local governments

Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. A bipartisan…

Security Researchers Expose Lazarus Recruitment Pipeline Live on Camera Through Honeypot Operation
02
Dec
2025

Security Researchers Expose Lazarus Recruitment Pipeline Live on Camera Through Honeypot Operation

A collaborative investigation by Mauro Eldritch of BCA LTD, ANYRUN, and NorthScan has provided unprecedented visibility into how North Korean…

nopCommerce Flaw Lets Attackers Access Accounts Using Captured Cookies
02
Dec
2025

nopCommerce Flaw Lets Attackers Access Accounts Using Captured Cookies

Security researchers have uncovered a serious vulnerability in nopCommerce, a popular open-source ecommerce platform used by major companies, including Microsoft,…

Malicious npm Package Uses Hidden Prompt and Script to Evade AI Security Tools
02
Dec
2025

Malicious npm Package Uses Hidden Prompt and Script to Evade AI Security Tools

Dec 02, 2025Ravie LakshmananAI Security / Software Supply Chain Cybersecurity researchers have disclosed details of an npm package that attempts…

Investing in diverse business could boost UK equity market
02
Dec
2025

CIO interview: Innovation in reworking business processes

Leicester-based Cambridge and Counties Bank has been using a modern middleware platform from SnapLogic to help it drive out manual…

Researchers warn command injection flaw in Fortinet FortiWeb is under exploitation
02
Dec
2025

Fortinet FortiWeb flaws found in unsupported versions of web application firewall

Security researchers warn that two recently disclosed vulnerabilities in Fortinet FortiWeb can be exploited in attacks targeting earlier, unsupported versions…

Android
02
Dec
2025

Google fixes two Android zero days exploited in attacks, 107 flaws

Google has released the December 2025 Android security bulletin, addressing 107 vulnerabilities, including two flaws actively exploited in targeted attacks….

Candiru’s DevilsTongue Spyware Attacking Windows Users in Multiple Countries
02
Dec
2025

Candiru’s DevilsTongue Spyware Attacking Windows Users in Multiple Countries

Candiru, an Israeli-based spyware vendor, has deployed sophisticated malware infrastructure across multiple countries to target high-value individuals including politicians, journalists,…

Early Indicators of Insider Threats Through Authentication and Access Controls
02
Dec
2025

Early Indicators of Insider Threats Through Authentication and Access Controls

Security researchers at Nisos have identified a critical gap in insider threat detection: organizations often fail to correlate early behavioral…

NK Hackers Push 200 Malicious npm Packages with OtterCookie Malware
02
Dec
2025

NK Hackers Push 200 Malicious npm Packages with OtterCookie Malware – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More

A security alert has been issued by software security firm Socket, revealing that North Korean threat actors have dramatically escalated…

An illustrated padlock is mounted into a microphone stand with sound waves emitting from the device.
02
Dec
2025

Air fryer app caught asking for voice data (re-air) (Lock and Code S06E24)

This week on the Lock and Code podcast… It’s often said online that if a product is free, you’re the…

GlassWorm Returns with 24 Malicious Extensions Impersonating Popular Developer Tools
02
Dec
2025

GlassWorm Returns with 24 Malicious Extensions Impersonating Popular Developer Tools

Dec 02, 2025Ravie LakshmananMalware / Blockchain The supply chain campaign known as GlassWorm has once again reared its head, infiltrating…