Cyber Alerts
- Bluetooth 6.1 enhances privacy with randomized RPA timing May 10, 2025The Bluetooth Special Interest Group (SIG) has announced Bluetooth Core Specification 6.1, bringing important improvements
- iClicker site hack targeted students with malware via fake CAPTCHA May 10, 2025The website of iClicker, a popular student engagement platform, was compromised in a ClickFix attack that used a
- Police dismantles botnet selling hacked routers as residential proxies May 9, 2025Law enforcement authorities have dismantled a botnet that infected thousands of routers over the last 20 years to build two
- Google Chrome to use on-device AI to detect tech support scams May 9, 2025Google is implementing a new Chrome security feature that uses the built-in 'Gemini Nano' large
- Fake AI video generators drop new Noodlophile infostealer malware May 9, 2025Fake AI-powered video generation tools are being used to distribute a new information-stealing malware family called
- SonicWall Patches 3 Flaws in SMA 100 Devices Allowing Attackers to Run Code as Root May 8, 2025SonicWall has released patches to address three security flaws affecting SMA 100 Secure Mobile Access (SMA) appliances that
- Education giant Pearson hit by cyberattack exposing customer data May 8, 2025Education giant Pearson suffered a cyberattack, allowing threat actors to steal corporate data and customer information, BleepingComputer has
- PowerSchool hacker now extorting individual school districts May 7, 2025PowerSchool is warning that the hacker behind its December cyberattack is now individually extorting schools, threatening to
- Open source project curl is sick of users submitting “AI slop” vulnerabilities May 7, 2025"One way you can tell is it's always such a nice report," founder tells Ars.
- Hackers exploit OttoKit WordPress plugin flaw to add admin accounts May 6, 2025Hackers are exploiting a critical unauthenticated privilege escalation vulnerability in the OttoKit WordPress plugin to create rogue admin accounts on
- Apache Parquet exploit tool detect servers vulnerable to critical flaw May 6, 2025A proof-of-concept exploit tool has been publicly released for a maximum severity Apache Parquet vulnerability,
- NSO Group fined $167M for spyware attacks on 1,400 WhatsApp users May 6, 2025A U.S. federal jury has ordered Israeli spyware vendor NSO Group to pay WhatsApp $167,
- Critical Langflow RCE flaw exploited to hack AI app servers May 6, 2025The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has tagged a Langflow remote code execution
- Darcula PhaaS steals 884,000 credit cards via phishing texts May 5, 2025The Darcula phishing-as-a-service (PhaaS) platform stole 884,000 credit cards from
- UK shares security tips after major retail cyberattacks May 4, 2025Following three high-profile cyberattacks impacting major UK retailers, the country's National Cyber Security Centre (
- Harrods the next UK retailer targeted in a cyberattack May 1, 2025London's iconic department store, Harrods, has confirmed it was targeted in a cyberattack, becoming the
- Hackers ramp up scans for leaked Git tokens and secrets April 29, 2025Threat actors are intensifying internet-wide scanning for Git configuration files that can reveal sensitive secrets and authentication tokens
- Marks & Spencer breach linked to Scattered Spider ransomware attack April 28, 2025Ongoing outages at British retail giant Marks & Spencer are caused by a ransomware attack believed to be conducted by
- Hitachi Vantara takes servers offline after Akira ransomware attack April 28, 2025Hitachi Vantara, a subsidiary of Japanese multinational conglomerate Hitachi, was forced to take servers offline over
- CVE fallout: The splintering of the standard vulnerability tracking system has begun April 28, 2025MITRE, EUVD, GCVE … WTF? Comment The splintering of the global system for identifying and tracking