Security

AI first, security later: all Fortune 500 companies use AI, but security rules are still under construction

AI is no longer a niche technology — it’s becoming a fundamental part of business strategy for most Fortune 500 companies in 2025. All of them are now using AI, but they differ in their approaches to implementing it. Cybernews researchers warn of the risks involved as the rulebooks have yet to be written.
Read more about AI first, security later: all Fortune 500 companies use AI, but security rules are still under construction

Over 64M T-Mobile records leaked online, hackers claim

The unconfirmed dataset, supposedly consisting of details taken from America’s second-largest mobile carrier, T-Mobile, includes device IDs and phone numbers.
Read more about Over 64M T-Mobile records leaked online, hackers claim

Researchers turn Microsoft 365 Copilot against users, leaking extremely sensitive data

Microsoft 365 Copilot could’ve leaked sensitive information to attackers with zero user interaction, even if they never opened a malicious email. New research demonstrates how powerful content poisoning can be against inadequate defenses.
Read more about Researchers turn Microsoft 365 Copilot against users, leaking extremely sensitive data

NIST touts 19 ways to build "off-the-shelf" Zero Trust Architecture in new guidance

The National Institute of Standards and Technology (NIST) on Wednesday released a newly finalized guidance on how to build a Zero Trust Architecture (ZTA) – all with readily available off-the-shelf commercial products.
Read more about NIST touts 19 ways to build "off-the-shelf" Zero Trust Architecture in new guidance

Three things to learn to stay afloat in today’s digital world

You’re more likely to get hired if you brag about some sort of AI-related skill. You’ll feel more protected against scams if you take self-defense classes. And finally, you’ll understand cyber threats a bit better if you know what’s happening in the world.
Read more about Three things to learn to stay afloat in today’s digital world

DDoS now a strategic threat

DDoS attacks within the financial sector aren’t letting up, and finance is a threat actor’s top target.
Read more about DDoS now a strategic threat

Most cybersecurity certificates are just “nice to have,” but these three will help you land a job

When evaluating candidates for cybersecurity roles, managers prioritize those with experience, according to a new report.
Read more about Most cybersecurity certificates are just “nice to have,” but these three will help you land a job

Food delivery platform exposes customer names, addresses

GonnaOrder, a Europe-based food delivery platform, left an unprotected instance, exposing food lovers’ data to anyone willing to look.
Read more about Food delivery platform exposes customer names, addresses

Hackers pose as job seekers: opening a resume leads to ransomware

Cybercriminals are increasingly applying for jobs, posing as potential candidates. Their sole goal is to convince recruiters to open their malicious resumes.
Read more about Hackers pose as job seekers: opening a resume leads to ransomware

Hackers hit mental health clinic, names and addresses allegedly exposed

Mount Rogers Community Services has appeared on a ransomware gang’s dark web leak site, with attackers suggesting they stole multiple private details from the organization’s systems.
Read more about Hackers hit mental health clinic, names and addresses allegedly exposed

Macron proposes social media ban for under-15s after school stabbing

French President Emmanuel Macron said he would push for European Union regulation to ban social media for children under the age of 15 after a fatal stabbing at a school in eastern France, the latest such violent attack that left the country reeling.
Read more about Macron proposes social media ban for under-15s after school stabbing

40,000 security cameras found streaming without passwords or other protections

Security cameras that are supposed to protect users from dangers are actually putting users at risk, security experts warn. Forty thousand exposed internet-connected cameras have been discovered, 14,000 in the US alone.
Read more about 40,000 security cameras found streaming without passwords or other protections

Hack on Philly‘s largest school network exposes credit card data

Mastery Schools, a Philadelphia-based school network, has fallen victim to a ransomware attack that exposed a trove of sensitive data, ranging from names and Social Security numbers (SSNs) to credit card info.
Read more about Hack on Philly‘s largest school network exposes credit card data

“Oral pleasure” app potentially leaks millions of messages and GPS locations

An intimate dating app has leaked over four million private records – including exact GPS locations, sexual preferences, and explicit chats.
Read more about “Oral pleasure” app potentially leaks millions of messages and GPS locations

Network of 4,000+ fake sites found pushing phony deals on Facebook

A Milwaukee tool chest or Birkenstock sandals at half price? A massive fake marketplace scam campaign involving dozens of major brand impersonations and over 4,000 domains has been discovered. Scammers are running tons of ads on social media.
Read more about Network of 4,000+ fake sites found pushing phony deals on Facebook

Wazuh servers targeted by Mirai botnets

Potential attackers could exploit a critical flaw to remotely execute code by uploading what researchers from Akamai called an “unsanitized dictionary.”
Read more about Wazuh servers targeted by Mirai botnets

Trove of port agency’s data stolen, hackers claim

S5 Agency World, a major port agency, has allegedly been victimized by a ransomware gang. The attackers claim to have taken nearly 140 gigabytes of data.
Read more about Trove of port agency’s data stolen, hackers claim

Here’s why ignoring politics is no longer an option for cyber pros

You can’t understand cyber threats without grasping the nuances of global politics.
Read more about Here’s why ignoring politics is no longer an option for cyber pros