Israel urges citizens to turn off home cameras as Iran hacks surveillance systems
Home security cameras with weak passwords are easy targets for hackers
Are 16 billion compromised passwords really part of a newly discovered data breach?
The mother of all breaches could just be multiple pre-existing archives fused into one
Low-wage tech support workers become a new gateway for cyberattacks
Outsourced call centers emerge as a new cybercrime battleground
Scammers hijack real support pages to show fake phone numbers
Hackers are also manipulating Google ads to plant fake support numbers
Microsoft strengthens Windows 365 Cloud PCs with virtualization-based protection
New default settings disable file redirections and enable advanced security features
Security may not be exciting, but AWS proves it's essential
At re:Inforce, AWS blends automation, AI, and usability in security
Keylogger campaign hitting Outlook Web Access on vulnerable Exchange servers goes global
Multiple vulnerabilities exploited to achieve malicious goals
Whistleblower warning: 2FA codes sent via SMS are trivially easy to intercept
Apps or physical authenticators are a better choice
Asus urges users to update Armoury Crate due to serious security flaw
Asus has released Armoury Crate version 6.1.18 to patch a serious vulnerability that could allow attackers to gain full administrative control over Windows systems. The flaw affects many preinstalled instances of the software on Asus gaming desktops, laptops, and the ROG Ally X handheld. Users are strongly urged to update immediately to protect their devices.
Nintendo is cracking down on Switch 2 mods, bans target reprogrammable cartridges
Using modding tools on the Switch 2 is a risky endeavor
Windows 11 now lets EU users export Recall data – if they still trust it
In compliance with EU law
New Anubis ransomware can encrypt and destroy data, making file recovery impossible
The RaaS operation poses a double threat to corporate data thanks to its wiper feature
Stolen iPhones disabled by Apple's anti-theft tech after Los Angeles looting
California has ramped up penalties for smash-and-grab robberies
So... You Want to Become a Penetration Tester?
Penetration testing is a key part of cybersecurity: finding and safely exploiting system flaws. Learn the skills, tools, and steps to start your career as an ethical hacker in this growing field.
Microsoft fixes first known zero-click attack on an AI agent
The "EchoLeak" security flaw affected Microsoft 365 Copilot
Two exploits are threatening Secure Boot, but Microsoft is only patching one of them
The security standard keeps on failing, spectacularly
Think before you click: Experts warn email "Unsubscribe" links pose security risks
"If you don't trust the source, why would you trust their unsubscribe link?"
AI is helping scammers steal student loans and enroll in fake classes
Millions lost as AI bots impersonate students and drain federal aid
OpenAI warns ChatGPT logs will be retained "indefinitely," blames court order
The Internet is forever
Cybercriminals target smart homes as BadBox 2.0 botnet spreads globally
Millions of smart devices at risk amid new BadBox 2.0 attacks
A hot potato: The resurgence of BadBox 2.0 poses new risks that consumers should be aware of. As unregulated, low-cost IoT devices become increasingly common in households around the world, it's essential to understand the potential dangers they present.
Hacker arrested after exploiting 5,000 accounts in $4.5 million cryptojacking scheme
Suspect could face up to 15 years in Ukranian prison
Asus urges factory resets and strong passwords following botnet breach
The company has released detailed steps to remove persistent router backdoors
Microsoft offers free cybersecurity tools to Europe in major initiative
Redmond seeks to avoid further EU antitrust penalties
Volvo launches world's first seatbelt that adapts to every body in real time
Tall or short, heavy or light, Volvo's multi-adaptive seatbelts have you covered
Australia becomes first country to force disclosure of ransomware payments
Effective deterrent or just public shaming for ransomware victims?