Data breach at major Swedish software supplier impacts 1.5 million

The Swedish Authority for Privacy Protection (IMY) is investigating a cyberattack on IT systems supplier Miljödata that ...

Media giant Nikkei reports data breach impacting 17,000 people

Japanese publishing giant Nikkei announced earlier today that its Slack messaging platform had been compromised, exposing the ...

The Top 3 Browser Sandbox Threats That Slip Past Modern Security Tools

Attackers exploit web browsers' built-in behaviors to steal credentials, abuse extensions, and move laterall, slipping past ...

Russian hackers abuse Hyper-V to hide malware in Linux VMs

The Russian hacker group Curly COMrades has been abusing Microsoft's Hyper-V virtualization technology in Windows to bypass ...

Windows 10 update bug triggers incorrect end-of-support alerts

Microsoft says the October 2025 updates trigger incorrect end-of-support warnings on Windows 10 systems with active security ...

Hacker steals over $120 million from Balancer DeFi crypto protocol

The Balancer Protocol announced that hackers had targeted its v2 pools, with losses reportedly estimated to be more than $128 ...

Hackers exploit critical auth bypass flaw in JobMonster WordPress theme

Threat actors are targeting a critical vulnerability in the JobMonster WordPress theme that allows hijacking of administrator ...

Fake Solidity VSCode extension on Open VSX backdoors developers

A remote access trojan dubbed SleepyDuck, and disguised as the well-known Solidity extension in the Open VSX open-source ...

Police arrests suspects linked to €600 million crypto fraud ring

European law enforcement authorities have arrested nine suspected money launderers who set up a cryptocurrency fraud network that stole over €600 million ($689 million) from victims across multiple ...

US cybersecurity experts indicted for BlackCat ransomware attacks

Three former employees of cybersecurity incident response companies DigitalMint and Sygnia have been indicted for allegedly ...

Microsoft: Patch for WSUS flaw disabled Windows Server hotpatching

An out-of-band (OOB) security update that patches an actively exploited Windows Server Update Service (WSUS) vulnerability has broken hotpatching on some Windows Server 2025 devices.

OAuth Device Code Phishing: Azure vs. Google Compared

Azure can yield very powerful tokens while Google limits scopes, reducing the blast radius. Register for Huntress Labs' Live Hack to see live Microsoft 365 attack demos, explore defensive tactics, and ...