Russian soldiers are being targeted with an Android app specially altered to pinpoint their location and scan their phones for files, with the ability to

Digital scammers and extortionists bilked businesses and individuals in the US out of a “staggering” $16.6 billion last year, according to the FBI — the

US health insurance giant Blue Shield of California handed sensitive health information belonging to as many as 4.7 million members to Google’s advertising empire, likely

Many versions of the Ripple ledger (XRPL) official NPM package are compromised with malware injected to steal cryptocurrency. The NPM package, xrpl, is a JavaScript/TypeScript

The security industry loves its buzzwords, and this is always on full display at the annual RSA Conference event in San Francisco. Don’t believe us?

Criminals used stolen credentials more frequently than email phishing to gain access into their victims’ IT systems last year, marking the first time that compromised

AI engineers should take a lesson from the early days of cybersecurity and bake safety and security into their models during development, rather than trying

The form and quiz-building tool is a popular vector for social engineering and malware. Here’s how to stay safe. Phil Muncaster 23 Apr 2025  • 

Opinion We almost lost the Common Vulnerabilities and Exposures (CVE) database system, but that’s only the tip of the iceberg of what President Trump and

After six years of work, Google’s Privacy Sandbox, technology for delivering ads while protecting privacy, looks like dust in the wind. The Chocolate Factory on

Two top officials have resigned from Uncle Sam’s Cybersecurity and Infrastructure Security Agency, aka CISA, furthering fears of a brain drain amid White House cuts

Ransomware scumbags – potentially those behind the Fog gang – are channeling their inner Elon Musk with their latest ransom note, spotted by researchers at

Ransomware threat hunters can now collect rewards of $10,000 for each piece of intel they file under a new bug bounty that aims to squash

UK high street mainstay Marks & Spencer told the London Stock Exchange this afternoon it has been managing a “cyber incident” for “the past few

Scam call centers are metastasizing worldwide “like a cancer,” according to the United Nations, which warns the epidemic has reached a global inflection point as

Digital Security What practical AI attacks exist today? “More than zero” is the answer – and they’re getting better. Cameron Camp 22 Apr 2025  • 

Certificate issuer SSL.com’s domain validation system had an unfortunate bug that was exploited by miscreants to obtain, without authorization, digital certs for legit websites. With

The time from vulnerability disclosure to proof-of-concept (PoC) exploit code can now be as short as a few hours, thanks to generative AI models. Matthew