Security
NVIDIA’s key toolkit packed with vulnerabilities, research finds
Nine newly discovered vulnerabilities in NVIDIA’s CUDA Toolkit could expose developers to security risks.
Read more about NVIDIA’s key toolkit packed with vulnerabilities, research finds
North Korean hackers posing as recruiters to steal crypto with malware
Cybercriminals from North Korea are disguising themselves as recruiters and targeting freelancer developers with infostealing malware.
Read more about North Korean hackers posing as recruiters to steal crypto with malware
Redditors chant “Firefox” as their uBlock Origin adblocker stops working on Chrome
Multiple users on Reddit are reporting that their Ublock Origin adblocker was turned off this week, and the extension is no longer available on the Chrome Web Store.
Read more about Redditors chant “Firefox” as their uBlock Origin adblocker stops working on Chrome
Alarming cyber mistake exposes passports, bills, and salary slips
The digital loan provider made everything from passports to utility bills available online, revealing loan seekers’ personal information to the public.
Read more about Alarming cyber mistake exposes passports, bills, and salary slips
Unknown Chinese ransomware gang raids dozens of companies using old flaws
The hackers are attacking from China, compromising organizations via outdated internet-facing services. Their motivation is money, but little is known about them otherwise.
Read more about Unknown Chinese ransomware gang raids dozens of companies using old flaws
Scammers selling old hard drives as new ones with 12-16 terabytes
Scammers are erasing Self-Monitoring, Analysis, and Reporting Technology (SMART) data, repackaging used hard drives, and selling them as new for use in servers or network-attached storage (NAS), Heise.de reports.
Read more about Scammers selling old hard drives as new ones with 12-16 terabytes
Malware hides on Google docs: passwords and private chats at risk
Hackers are now using Google Docs and other trusted platforms to secretly control malware that steals passwords, chat logs, and sensitive data – without users ever noticing.
Read more about Malware hides on Google docs: passwords and private chats at risk
From ransomware to smart cities: SECON & eGISEC 2025 to tackle global security challenges
Business leaders and cybersecurity professionals will soon head to the annual SECON & eGISEC exhibition in South Korea to discuss the most pressing security issues and come up with possible solutions.
Read more about From ransomware to smart cities: SECON & eGISEC 2025 to tackle global security challenges
Medical data discovered on hard drives sold at flea market
Hard drives containing sensitive and personal information of hundreds of patients have been sold at a flea market.
Read more about Medical data discovered on hard drives sold at flea market
OpenSSH vulnerable to man-in-the-middle attacks for ten years: patch now available
Two critical vulnerabilities have affected OpenSSH, the popular remote connection tool, for ten years. Attackers were able to intercept credentials and hijack sessions, leading to sensitive data exfiltration and other attacks.
Read more about OpenSSH vulnerable to man-in-the-middle attacks for ten years: patch now available
Cyberattack hits Lee Enterprises harder than expected
Lee Enterprises, one of the largest newspaper publishers in the United States, expects that a recent cyberattack will most likely have a material impact on its operations.
Read more about Cyberattack hits Lee Enterprises harder than expected
US Coast Guard hack leads to paycheck delays, forces personnel systems offline
A data breach at the US Coast Guard (USCG) has forced officials to take its personnel and payment systems offline, resulting in paycheck delays for over 1,100 servicemembers.
Read more about US Coast Guard hack leads to paycheck delays, forces personnel systems offline
New MacOS malware FrigidStealer targeting users with fake updates
A new information stealer for MacOS distributes malware depending on the browser and uses social engineering.
Read more about New MacOS malware FrigidStealer targeting users with fake updates
Document management system leak exposed 25M records
A major data leak has revealed millions of records from a Latvian document management system, primarily used by the Latvian government.
Read more about Document management system leak exposed 25M records
Infostealer malware detected within US military and defense companies
The US Army, Navy, and major defense contractors, including Lockheed Martin, Boeing, and Honeywell have hundreds of computers with active infostealer infections, the Israeli cybersecurity firm Hudson Rock has claimed.
Read more about Infostealer malware detected within US military and defense companies
Dozens of Italian websites targeted by Russian hackers
According to Italy’s national cybersecurity agency ACN, approximately twenty Italian websites have been targeted by pro-Russian hackers.
Read more about Dozens of Italian websites targeted by Russian hackers
Cybercriminals are stealing AI power, and you might be the one paying for it
Attackers are using large language models (LLMs) in so-called LLM hijacking exploits, passing the cost of cloud bills onto companies and individuals.
Read more about Cybercriminals are stealing AI power, and you might be the one paying for it
Hackers infect websites of a major Lithuanian food company Vičiūnai Group
Websites belonging to UAB Vičiūnų grupė, one of the largest food producers in Lithuania, contain a malicious loader capable of infecting user devices.
Read more about Hackers infect websites of a major Lithuanian food company Vičiūnai Group
Spy becomes cybercriminal in curious ransomware incident
A China-linked espionage actor may be moonlighting as a ransomware attacker, raising questions about their motives.
Read more about Spy becomes cybercriminal in curious ransomware incident
Three days later, DOGE site remains defaced: experts point at cybersecurity violations
Cyber pros argue that the new Elon Musk-led department might have breached federal cybersecurity laws. The community is discovering new defaced pages on DOGE.gov that remain accessible three days after the breach was widely announced.
Read more about Three days later, DOGE site remains defaced: experts point at cybersecurity violations
