Multiple attackers using a new phishing service dubbed VoidProxy to target organizations’ Microsoft and Google accounts have successfully stolen users’ credentials, multi-factor authentication codes, and

Villager, a new penetration-testing tool linked to a suspicious China-based company and described by researchers as “Cobalt Strike’s AI successor,” has been downloaded about 10,000

A DDoS mitigation provider was given a taste of the poison it tries to prevent, after being smacked by one of the largest packet-rate attacks

If you thought the world was done with side-channel CPU attacks, think again. ETH Zurich has identified yet another Spectre-based transient execution vulnerability that affects

Microsoft is back in the firing line after US Senator Ron Wyden accused Redmond of shipping “dangerous, insecure software” that helped cybercrooks cripple one of

Europe, long seen as a bastion of privacy and digital rights, will debate this week whether to enforce surveillance on citizens’ devices. Representatives from member

One of the UK’s largest rail operators, LNER, is the latest organization to spill user data via a third-party data breach. It confirmed the incident

Industry experts expressed both concern and sympathy for Ofcom, the Brit regulator that is overseeing the Online Safety Act, as questions mount over the effectiveness

Business Security As bad actors often simply waltz through companies’ digital front doors with a key, here’s how to keep your own door firmly locked

Following a series of trials, defense biz BAE Systems says it is readying an autonomous military submarine for the end of next year. The uncrewed

NASA has barred Chinese nationals from accessing its premises and assets, even those who hold visas that permit them to reside in the USA. The

‘EggStreme’ framework looks like the sort of thing Beijing would find handy in its ongoing territorial beefs Infosec outfit Bitdefender says it’s spotted a strain

Affiliates of the Akira ransomware gang are again exploiting a critical SonicWall vulnerability abused last summer, after a suspected zero-day flaw actually turned out to

ChillyHell, a modular macOS backdoor believed to be long dormant, has likely been infecting computers for years while flying under the radar, according to security

Jaguar Land Rover (JLR) says “some data” was affected after the luxury car maker suffered a digital break-in early last week. Cybercrooks ripped the wheels

Jaguar Land Rover (JLR) says “some data” was affected after the luxury car maker suffered a digital break-in early last week. Cybercrooks ripped the wheels

A Ukrainian national faces serious federal charges and an $11 million bounty after allegedly orchestrating ransomware operations that caused an estimated $18 billion in damages

A clumsy data breach has affected hundreds of children at a Birmingham secondary school. The school said in an email to parents that students in