29 Jul

The hidden risks of browser extensions – and how to stay safe

Digital Security Not all browser add-ons are handy helpers – some may contain far more than you have bargained for Phil Muncaster 29 Jul 2025

Author rabih
28 Jul

Microsoft spotlights Apple bug patched in March as SharePoint exploits continue

Amidst its own failure to fix a couple of bugs now under mass exploitation and being abused for espionage, data theft, and ransomware infections, Microsoft

Author rabih
28 Jul

Security pros are drowning in threat-intel data and it’s making everything more dangerous

Too many threats, too much data, and too few skilled security analysts are making companies more vulnerable to cyberattacks, according to the IT and security

Author rabih
28 Jul

Majority of 1.4M customers caught in Allianz Life data heist

Financial services biz Allianz says the majority of customers of one of its North American subsidiaries had their data stolen in a cyberattack. Lawyers acting

Author rabih
28 Jul

Aeroflot aeroflops over ‘IT issues’ after attackers claim year-long compromise

Russia’s largest airline, Aeroflot, canceled numerous flights on Monday morning following what it says was a failure in its IT systems – something hacktivists are

Author rabih
28 Jul

US spy satellite agency breached, but insists no classified secrets spilled

Infosec in brief A computer intrusion hit the US spy satellite agency, but officials insist no classified secrets were lost – just some unclassified ones,

Author rabih
26 Jul

Congress tries to outlaw AI that jacks up prices based on what it knows about you

Two Democratic members of Congress, Greg Casar (D-TX) and Rashida Tlaib (D-MI,) have introduced legislation in the US House of Representatives to ban the use

Author rabih
26 Jul

Blame a leak for Microsoft SharePoint attacks, researcher insists

A week after Microsoft told the world that its July software updates didn’t fully fix a couple of bugs, which allowed miscreants to take over

Author rabih
25 Jul

Senator to Google: Give us info from telco Salt Typhoon probes

US Senator Maria Cantwell (D-WA) has demanded that Google-owned incident response firm Mandiant hand over the Salt Typhoon-related security assessments of AT&T and Verizon that,

Author rabih
25 Jul

Freelance dev shop Toptal caught serving malware after GitHub account break-in

Developer freelancing platform Toptal has been inadvertently spreading malicious code after attackers broke into its systems and began distributing malware through developer accounts. Toptal bills

Author rabih
25 Jul

Microsoft admits it ‘cannot guarantee’ data sovereignty

Microsoft says it “cannot guarantee” data sovereignty to customers in France – and by implication the wider European Union – should the Trump administration demand

Author rabih
25 Jul

Advisor to Brit tech contractors Qdos confirms client data leak

Business insurance and employment status specialist Qdos has confirmed that an intruder has stolen some customers personal data, according to a communication to tech contractors

Author rabih
25 Jul

SharePoint under fire: ToolShell attacks hit organizations worldwide

The ToolShell bugs are being exploited by cybercriminals and APT groups alike, with the US on the receiving end of 13 percent of all attacks

Author rabih
25 Jul

DNS security is important but DNSSEC may be a failed experiment

Systems Approach Last week I turned on DNSSEC (Domain Name System Security Extensions) for the systemsapproach.org domain. No need to applaud; I was just trying

Author rabih
24 Jul

Laptop farmer behind $17M North Korean IT worker scam locked up for 8.5 years

An Arizona woman who ran a laptop farm from her home – helping North Korean IT operatives pose as US-based remote workers – has been

Author rabih
24 Jul

Euro healthcare giant AMEOS Group shuts down IT systems after mystery attack

The AMEOS Group, which runs over 100 hospitals across Europe, has shut down its entire network after crims busted in. The organization, which is Swiss-owned

Author rabih
24 Jul

No login? No problem: Cisco ISE flaw gave root access before fix arrived, say researchers

Threat actors have actively exploited a newly patched vulnerability in Cisco’s Identity Services Engine (ISE) software since early July, weeks before the networking giant got

Author rabih
24 Jul

So much for watermarks: UnMarker tool nukes AI provenance tags

Computer scientists with the University of Waterloo in Ontario, Canada, say they’ve developed a way to remove watermarks embedded in AI-generated images. To support that

Author rabih
Load moreLoadingAll items loaded