Featured

Two Scattered Spider Suspects Arrested in UK; One Charged in US

arrested, charged, cybercrime, Featured, Scattered Spider, Tracking & Law Enforcement, UK /

Two Scattered Spider Suspects Arrested in UK; One Charged in US 2025-09-19 at 12:32 By Ionut Arghire Thalha Jubair and Owen Flowers were charged in the UK and the US with hacking critical infrastructure organizations. The post Two Scattered Spider Suspects Arrested in UK; One Charged in US appeared first on SecurityWeek. This article is […]

React to this headline:

Loading spinner

Two Scattered Spider Suspects Arrested in UK; One Charged in US Read More »

ChatGPT Targeted in Server-Side Data Theft Attack

AI, Artificial Intelligence, ChatGPT, data theft, Deep Research, Featured, server side, ShadowLeak /

ChatGPT Targeted in Server-Side Data Theft Attack 2025-09-18 at 18:49 By Eduard Kovacs OpenAI has fixed this zero-click attack method called by researchers ShadowLeak. The post ChatGPT Targeted in Server-Side Data Theft Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

ChatGPT Targeted in Server-Side Data Theft Attack Read More »

Insight Partners Confirms Data Breach Result of Ransomware Attack

data breach, Data Breaches, Featured, Insight Partners, Ransomware /

Insight Partners Confirms Data Breach Result of Ransomware Attack 2025-09-18 at 11:10 By Eduard Kovacs Venture capital firm Insight Partners says the data breach disclosed in February 2025 impacts over 12,000 people. The post Insight Partners Confirms Data Breach Result of Ransomware Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Insight Partners Confirms Data Breach Result of Ransomware Attack Read More »

Shai-Hulud Supply Chain Attack: Worm Used to Steal Secrets, 180+ NPM Packages Hit

Application Security, Featured, NPM, Shai-Hulud, supply chain, Supply Chain Security, worm /

Shai-Hulud Supply Chain Attack: Worm Used to Steal Secrets, 180+ NPM Packages Hit 2025-09-17 at 16:04 By Ionut Arghire The packages were injected with malicious code to harvest secrets, dump them to a public repository, and make private repositories public. The post Shai-Hulud Supply Chain Attack: Worm Used to Steal Secrets, 180+ NPM Packages Hit

React to this headline:

Loading spinner

Shai-Hulud Supply Chain Attack: Worm Used to Steal Secrets, 180+ NPM Packages Hit Read More »

ChatGPT’s New Calendar Integration Can Be Abused to Steal Emails

AI, Artificial Intelligence, calendar, ChatGPT, Featured, integration /

ChatGPT’s New Calendar Integration Can Be Abused to Steal Emails 2025-09-16 at 14:05 By Eduard Kovacs EdisonWatch researchers demonstrated the new hack after OpenAI added support for MCP tools in ChatGPT. The post ChatGPT’s New Calendar Integration Can Be Abused to Steal Emails appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

ChatGPT’s New Calendar Integration Can Be Abused to Steal Emails Read More »

Apple Rolls Out iOS 26, macOS Tahoe 26 With Patches for Over 50 Vulnerabilities

apple, Featured, iOS, iOS 26, macOS, macOS Tahoe, patch, Vulnerabilities /

Apple Rolls Out iOS 26, macOS Tahoe 26 With Patches for Over 50 Vulnerabilities 2025-09-16 at 11:54 By Ionut Arghire Apple has announced major mobile and desktop platform releases and addressed an exploited bug in older platforms. The post Apple Rolls Out iOS 26, macOS Tahoe 26 With Patches for Over 50 Vulnerabilities appeared first

React to this headline:

Loading spinner

Apple Rolls Out iOS 26, macOS Tahoe 26 With Patches for Over 50 Vulnerabilities Read More »

Samsung Patches Zero-Day Exploited Against Android Users

exploited, Featured, Mobile & Wireless, Samsung, spyware, Zero-Day /

Samsung Patches Zero-Day Exploited Against Android Users 2025-09-15 at 11:21 By Ionut Arghire Reported by Meta and WhatsApp, the vulnerability leads to remote code execution and was likely exploited by a spyware vendor. The post Samsung Patches Zero-Day Exploited Against Android Users appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Samsung Patches Zero-Day Exploited Against Android Users Read More »

Payment System Vendor Took Year+ to Patch Infinite Card Top-Up Hack: Security Firm

Featured, hardware, KioSoft, MiFare, NFC, payment, Vulnerabilities, vulnerability /

Payment System Vendor Took Year+ to Patch Infinite Card Top-Up Hack: Security Firm 2025-09-12 at 11:47 By Eduard Kovacs KioSoft was notified about a serious NFC card vulnerability in 2023 and only recently claimed to have released a patch. The post Payment System Vendor Took Year+ to Patch Infinite Card Top-Up Hack: Security Firm appeared

React to this headline:

Loading spinner

Payment System Vendor Took Year+ to Patch Infinite Card Top-Up Hack: Security Firm Read More »

UAE’s K2 Think AI Jailbroken Through Its Own Transparency Features

AI jailbreak, Artificial Intelligence, Featured, jailbreak, Uncategorized /

UAE’s K2 Think AI Jailbroken Through Its Own Transparency Features 2025-09-11 at 15:24 By Kevin Townsend Researchers exploited K2 Think’s built-in explainability to dismantle its safety guardrails, raising new questions about whether transparency and security in AI can truly coexist. The post UAE’s K2 Think AI Jailbroken Through Its Own Transparency Features appeared first on

React to this headline:

Loading spinner

UAE’s K2 Think AI Jailbroken Through Its Own Transparency Features Read More »

Remote CarPlay Hack Puts Drivers at Risk of Distraction and Surveillance

car hacking, CarPlay, Featured, IoT Security, Mobile & Wireless /

Remote CarPlay Hack Puts Drivers at Risk of Distraction and Surveillance 2025-09-11 at 13:27 By Eduard Kovacs Oligo Security has shared details on an Apple CarPlay attack that hackers may be able to launch without any interaction. The post Remote CarPlay Hack Puts Drivers at Risk of Distraction and Surveillance appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Remote CarPlay Hack Puts Drivers at Risk of Distraction and Surveillance Read More »

Apple Unveils iPhone Memory Protections to Combat Sophisticated Attacks

apple, Featured, iPhone, iPhone 17, iPhone Air, Memory Integrity Enforcement, memory protection, MIE, Mobile & Wireless, spyware, surveillance /

Apple Unveils iPhone Memory Protections to Combat Sophisticated Attacks 2025-09-10 at 15:54 By Eduard Kovacs Apple’s new Memory Integrity Enforcement (MIE) brings always-on memory-safety protection covering key attack surfaces — including the kernel and over 70 userland processes. The post Apple Unveils iPhone Memory Protections to Combat Sophisticated Attacks appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Apple Unveils iPhone Memory Protections to Combat Sophisticated Attacks Read More »

Highly Popular NPM Packages Poisoned in New Supply Chain Attack

Application Security, Cryptocurrency, cryptojacking, Featured, NPM, supply chain, Supply Chain Security /

Highly Popular NPM Packages Poisoned in New Supply Chain Attack 2025-09-10 at 11:45 By Ionut Arghire Designed to intercept cryptocurrency transactions, the malicious code reached 10% of cloud environments. The post Highly Popular NPM Packages Poisoned in New Supply Chain Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Highly Popular NPM Packages Poisoned in New Supply Chain Attack Read More »

Microsoft Patches 86 Vulnerabilities

Featured, Microsoft, Patch Tuesday, Vulnerabilities, vulnerability /

Microsoft Patches 86 Vulnerabilities 2025-09-09 at 21:57 By Eduard Kovacs Microsoft has released patches for dozens of flaws in Windows and other products, including ones with ‘exploitation more likely’ rating. The post Microsoft Patches 86 Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Microsoft Patches 86 Vulnerabilities Read More »

Mitsubishi Electric to Acquire Nozomi Networks for Nearly $1 Billion

Acquisition, Featured, Funding/M&A, ICS, M&A Tracker, Mitsubishi Electric, Nozomi Networks, OT /

Mitsubishi Electric to Acquire Nozomi Networks for Nearly $1 Billion 2025-09-09 at 14:00 By Eduard Kovacs The industrial cybersecurity firm will become a wholly owned subsidiary of Mitsubishi Electric. The post Mitsubishi Electric to Acquire Nozomi Networks for Nearly $1 Billion appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Mitsubishi Electric to Acquire Nozomi Networks for Nearly $1 Billion Read More »

Salesloft GitHub Account Compromised Months Before Salesforce Attack

Data Breaches, Featured, Salesforce, Salesloft, UNC6395 /

Salesloft GitHub Account Compromised Months Before Salesforce Attack 2025-09-08 at 16:06 By Ionut Arghire The list of impacted cybersecurity firms has been expanded to include BeyondTrust, Bugcrowd, CyberArk, Cato Networks, JFrog, and Rubrik. The post Salesloft GitHub Account Compromised Months Before Salesforce Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Salesloft GitHub Account Compromised Months Before Salesforce Attack Read More »

Fintech Firm Wealthsimple Says Supply Chain Attack Resulted in Data Breach

data breach, Data Breaches, Featured, Wealthsimple /

Fintech Firm Wealthsimple Says Supply Chain Attack Resulted in Data Breach 2025-09-08 at 13:05 By Eduard Kovacs Canadian firm Wealthsimple says a data breach impacts the information of some customers, but accounts and funds remain secure. The post Fintech Firm Wealthsimple Says Supply Chain Attack Resulted in Data Breach appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Fintech Firm Wealthsimple Says Supply Chain Attack Resulted in Data Breach Read More »

More Cybersecurity Firms Hit by Salesforce-Salesloft Drift Breach

Data Breaches, Featured, Salesforce, Salesloft, security company hacked /

More Cybersecurity Firms Hit by Salesforce-Salesloft Drift Breach 2025-09-05 at 11:51 By Ionut Arghire Proofpoint, SpyCloud, Tanium, and Tenable confirmed that hackers accessed information stored in their Salesforce instances. The post More Cybersecurity Firms Hit by Salesforce-Salesloft Drift Breach appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

Loading spinner

More Cybersecurity Firms Hit by Salesforce-Salesloft Drift Breach Read More »

Recent SAP S/4HANA Vulnerability Exploited in Attacks

exploited, Featured, SAP, Vulnerabilities /

Recent SAP S/4HANA Vulnerability Exploited in Attacks 2025-09-05 at 11:09 By Eduard Kovacs A critical SAP S/4HANA code injection flaw tracked as CVE-2025-42957 and allowing full system takeover has been exploited in the wild. The post Recent SAP S/4HANA Vulnerability Exploited in Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Recent SAP S/4HANA Vulnerability Exploited in Attacks Read More »

Apple Seeks Researchers for 2026 iPhone Security Program

apple, Apple Security Research Device, Featured, iPhone, Mobile & Wireless, SRDP /

Apple Seeks Researchers for 2026 iPhone Security Program 2025-09-04 at 18:23 By Eduard Kovacs Security researchers interested in participating in the 2026 Apple Security Research Device program can apply until October 31. The post Apple Seeks Researchers for 2026 iPhone Security Program appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Apple Seeks Researchers for 2026 iPhone Security Program Read More »

Two Exploited Vulnerabilities Patched in Android

Android, exploited, Featured, Mobile & Wireless, patch, Zero-Day /

Two Exploited Vulnerabilities Patched in Android 2025-09-04 at 11:40 By Ionut Arghire Elevation of privilege flaws in Android Runtime (CVE-2025-48543) and Linux kernel (CVE-2025-38352) have been exploited in targeted attacks. The post Two Exploited Vulnerabilities Patched in Android appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this

React to this headline:

Loading spinner

Two Exploited Vulnerabilities Patched in Android Read More »

Scroll to Top