Featured

AI Sidebar Spoofing Puts ChatGPT Atlas, Perplexity Comet and Other Browsers at Risk

AI, Artificial Intelligence, browser, ChatGPT Atlas, extension, Featured, Perplexity Comet /

AI Sidebar Spoofing Puts ChatGPT Atlas, Perplexity Comet and Other Browsers at Risk 2025-10-23 at 17:10 By Eduard Kovacs SquareX has shown how malicious browser extensions can impersonate AI sidebar interfaces. The post AI Sidebar Spoofing Puts ChatGPT Atlas, Perplexity Comet and Other Browsers at Risk appeared first on SecurityWeek. This article is an excerpt […]

AI Sidebar Spoofing Puts ChatGPT Atlas, Perplexity Comet and Other Browsers at Risk Read More »

Mobile Security: Verizon Says Attacks Soar, AI-Powered Threats Raise Alarm

AI, Artificial Intelligence, Featured, Mobile & Wireless, mobile security, report, Verizon /

Mobile Security: Verizon Says Attacks Soar, AI-Powered Threats Raise Alarm 2025-10-23 at 13:05 By Eduard Kovacs Verizon’s 2025 Mobile Security Index shows that 85% of organizations believe mobile device attacks are on the rise. The post Mobile Security: Verizon Says Attacks Soar, AI-Powered Threats Raise Alarm appeared first on SecurityWeek. This article is an excerpt

Mobile Security: Verizon Says Attacks Soar, AI-Powered Threats Raise Alarm Read More »

Hackers Earn Over $520,000 on First Day of Pwn2Own Ireland 2025

exploit, Featured, IoT Security, Pwn2Own, Pwn2Own Ireland, Pwn2Own Ireland 2025, Vulnerabilities /

Hackers Earn Over $520,000 on First Day of Pwn2Own Ireland 2025 2025-10-22 at 10:36 By Eduard Kovacs Participants exploited 34 previously unknown vulnerabilities to hack printers, NAS devices, and smart home products. The post Hackers Earn Over $520,000 on First Day of Pwn2Own Ireland 2025 appeared first on SecurityWeek. This article is an excerpt from

Hackers Earn Over $520,000 on First Day of Pwn2Own Ireland 2025 Read More »

CISA Confirms Exploitation of Latest Oracle EBS Vulnerability 

CISA KEV, CVE-2025-61884, exploited, Featured, Oracle E-Business Suite, Oracle hack, Vulnerabilities /

CISA Confirms Exploitation of Latest Oracle EBS Vulnerability  2025-10-21 at 11:54 By Eduard Kovacs The cybersecurity agency has added CVE-2025-61884 to its Known Exploited Vulnerabilities (KEV) catalog. The post CISA Confirms Exploitation of Latest Oracle EBS Vulnerability  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

CISA Confirms Exploitation of Latest Oracle EBS Vulnerability  Read More »

American Airlines Subsidiary Envoy Air Hit by Oracle Hack

American Airlines, Data Breaches, Data leak, Envoy AIr, Featured, hacked, Oracle E-Business Suite /

American Airlines Subsidiary Envoy Air Hit by Oracle Hack 2025-10-20 at 13:17 By Eduard Kovacs Envoy Air, which operates the American Eagle brand, has confirmed that business information was stolen by hackers. The post American Airlines Subsidiary Envoy Air Hit by Oracle Hack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

American Airlines Subsidiary Envoy Air Hit by Oracle Hack Read More »

China Accuses US of Cyberattack on National Time Center

China, cyberattack, Cyberwarfare, Featured, NSA /

China Accuses US of Cyberattack on National Time Center 2025-10-20 at 03:58 By Associated Press The Ministry of State Security alleged that the NSA exploited vulnerabilities in the messaging services of a foreign mobile phone brand to steal sensitive information. The post China Accuses US of Cyberattack on National Time Center appeared first on SecurityWeek.

China Accuses US of Cyberattack on National Time Center Read More »

Prosper Data Breach Impacts 17.6 Million Accounts

data breach, Data Breaches, Featured, lender, Prosper /

Prosper Data Breach Impacts 17.6 Million Accounts 2025-10-17 at 11:47 By Ionut Arghire Hackers stole names, addresses, dates of birth, email addresses, Social Security numbers, government IDs, and other information. The post Prosper Data Breach Impacts 17.6 Million Accounts appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Prosper Data Breach Impacts 17.6 Million Accounts Read More »

Organizations Warned of Exploited Adobe AEM Forms Vulnerability

Adobe, AEM Forms, CISA KEV, exploited, Featured, Vulnerabilities /

Organizations Warned of Exploited Adobe AEM Forms Vulnerability 2025-10-16 at 17:45 By Ionut Arghire A public PoC existed when Adobe patched the Experience Manager Forms (AEM Forms) bug in early August. The post Organizations Warned of Exploited Adobe AEM Forms Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Organizations Warned of Exploited Adobe AEM Forms Vulnerability Read More »

F5 Hack: Attack Linked to China, BIG-IP Flaws Patched, Governments Issue Alerts 

Big-IP, China, China APT, Data Breaches, F5, Featured, Nation-State, source code /

F5 Hack: Attack Linked to China, BIG-IP Flaws Patched, Governments Issue Alerts  2025-10-16 at 12:58 By Eduard Kovacs More information has come to light on the cyberattack disclosed this week by F5, including on attribution and potential risks. The post F5 Hack: Attack Linked to China, BIG-IP Flaws Patched, Governments Issue Alerts  appeared first on

F5 Hack: Attack Linked to China, BIG-IP Flaws Patched, Governments Issue Alerts  Read More »

F5 Blames Nation-State Hackers for Theft of Source Code and Vulnerability Data

Big-IP, China, Data Breaches, data theft, F5, Featured, Nation-State, source code /

F5 Blames Nation-State Hackers for Theft of Source Code and Vulnerability Data 2025-10-15 at 18:18 By Eduard Kovacs F5 has not shared too much information on the threat actor, but the attack profile seems to point to China. The post F5 Blames Nation-State Hackers for Theft of Source Code and Vulnerability Data appeared first on

F5 Blames Nation-State Hackers for Theft of Source Code and Vulnerability Data Read More »

Microsoft Patches 173 Vulnerabilities, Including Exploited Windows Flaws

Endpoint Security, Featured, Microsoft, patch, Patch Tuesday, vulnerability /

Microsoft Patches 173 Vulnerabilities, Including Exploited Windows Flaws 2025-10-15 at 07:40 By Ionut Arghire The tech giant has rolled out fixes for 173 CVEs, including five critical-severity security defects. The post Microsoft Patches 173 Vulnerabilities, Including Exploited Windows Flaws appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Microsoft Patches 173 Vulnerabilities, Including Exploited Windows Flaws Read More »

CISO Conversations: Are Microsoft’s Deputy CISOs a Signpost to the Future?

CISO, CISO Conversations, CISO Strategy, Featured, Microsoft /

CISO Conversations: Are Microsoft’s Deputy CISOs a Signpost to the Future? 2025-10-14 at 14:08 By Kevin Townsend SecurityWeek talks to Microsoft Deputy CISOs Ann Johnson and Mark Russinovich. The post CISO Conversations: Are Microsoft’s Deputy CISOs a Signpost to the Future? appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

CISO Conversations: Are Microsoft’s Deputy CISOs a Signpost to the Future? Read More »

Windows 10 Still on Over 40% of Devices as It Reaches End of Support

Endpoint Security, Featured, Microsoft, Windows, Windows 10, Windows 10 EOS /

Windows 10 Still on Over 40% of Devices as It Reaches End of Support 2025-10-14 at 13:03 By Eduard Kovacs Users can continue receiving important security updates for Windows 10 by enrolling in the ESU program. The post Windows 10 Still on Over 40% of Devices as It Reaches End of Support appeared first on

Windows 10 Still on Over 40% of Devices as It Reaches End of Support Read More »

Extortion Group Leaks Millions of Records From Salesforce Hacks

Data Breaches, Data leak, Featured, Salesforce hack, Scattered Spider, ShinyHunters /

Extortion Group Leaks Millions of Records From Salesforce Hacks 2025-10-13 at 12:57 By Ionut Arghire The data allegedly pertains to Albertsons, Engie Resources, Fujifilm, GAP, Qantas, and Vietnam Airlines. The post Extortion Group Leaks Millions of Records From Salesforce Hacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Extortion Group Leaks Millions of Records From Salesforce Hacks Read More »

Apple Bug Bounty Update: Top Payout $2 Million, $35 Million Paid to Date

apple, bug bounty program, Featured, Mobile & Wireless, Vulnerabilities /

Apple Bug Bounty Update: Top Payout $2 Million, $35 Million Paid to Date 2025-10-10 at 12:17 By Eduard Kovacs Apple has announced significant updates to its bug bounty program, including new categories and target flags. The post Apple Bug Bounty Update: Top Payout $2 Million, $35 Million Paid to Date appeared first on SecurityWeek. This

Apple Bug Bounty Update: Top Payout $2 Million, $35 Million Paid to Date Read More »

Discord Says 70,000 Users Had IDs Exposed in Recent Data Breach

data breach, Data Breaches, Discord, Featured /

Discord Says 70,000 Users Had IDs Exposed in Recent Data Breach 2025-10-09 at 13:07 By Ionut Arghire The hackers claim the theft of over 2 million photos of government identification documents provided to Discord for age verification. The post Discord Says 70,000 Users Had IDs Exposed in Recent Data Breach appeared first on SecurityWeek. This

Discord Says 70,000 Users Had IDs Exposed in Recent Data Breach Read More »

Exploitation of Oracle EBS Zero-Day Started 2 Months Before Patching

Cl0p, E-Business Suite, exploited, Featured, Oracle E-Business Suite, Oracle hack, PoC, Vulnerabilities, Zero-Day /

Exploitation of Oracle EBS Zero-Day Started 2 Months Before Patching 2025-10-08 at 10:57 By Eduard Kovacs Hundreds of internet-exposed Oracle E-Business Suite instances may still be vulnerable to attacks. The post Exploitation of Oracle EBS Zero-Day Started 2 Months Before Patching appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Exploitation of Oracle EBS Zero-Day Started 2 Months Before Patching Read More »

The Y2K38 Bug Is a Vulnerability, Not Just a Date Problem, Researchers Warn

Featured, Network Security, NTP, time manipulation, Unix, Vulnerabilities, Y2K38, Year 2038 /

The Y2K38 Bug Is a Vulnerability, Not Just a Date Problem, Researchers Warn 2025-10-07 at 11:43 By Eduard Kovacs The Year 2036/2038 problem is a bug that will be triggered in more than a decade, but hackers could exploit it today against ICS and consumer devices. The post The Y2K38 Bug Is a Vulnerability, Not

The Y2K38 Bug Is a Vulnerability, Not Just a Date Problem, Researchers Warn Read More »

Oracle E-Business Suite Zero-Day Exploited in Cl0p Attacks

Cl0p, Data Breaches, exploited, Featured, Oracle E-Business Suite, Oracle hack, Vulnerabilities, Zero-Day /

Oracle E-Business Suite Zero-Day Exploited in Cl0p Attacks 2025-10-06 at 11:41 By Eduard Kovacs Oracle has informed customers that it has patched a critical remote code execution vulnerability tracked as CVE-2025-61882. The post Oracle E-Business Suite Zero-Day Exploited in Cl0p Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Oracle E-Business Suite Zero-Day Exploited in Cl0p Attacks Read More »

Red Hat Confirms GitLab Instance Hack, Data Theft

Crimson Collective, data breach, Data Breaches, Featured, GitLab, Red Hat, source code /

Red Hat Confirms GitLab Instance Hack, Data Theft 2025-10-03 at 10:15 By Eduard Kovacs Hackers claim to have stolen 28,000 private repositories, including data associated with major companies that use Red Hat services. The post Red Hat Confirms GitLab Instance Hack, Data Theft appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Red Hat Confirms GitLab Instance Hack, Data Theft Read More »

Scroll to Top