Google paid out $17.1 million in bug bounties in 2025, the biggest year for payouts ever.
ShinyHunters take the blame, saying they grabbed GCP credentials in the Salesloft Drift fiasco.
Starbucks HR and workplace platform attacked, and sensitive data pulled.
Three distinct campaigns recently spotted by Sophos, all targeting MacOS users with infostealers.
A bipartisan bill would force the FBI to get a warrant to read Americans’ messages and ban the federal purchase of commercial data on US residents ahead of a critical April deadline.
AI attacks, identity theft, and ransomware, are combining. What could possibly go wrong?
An international law enforcement operation shut down a service called SocksEscort, which allegedly helped cybercriminals all over the world launch ransomware and DDoS attacks, as well as distribute child sexual abuse material.
Amid a paralyzing breach of medical tech firm Stryker, the group has come to represent Iran’s use of “hacktivism” as cover for chaotic, retaliatory state-sponsored cyberattacks.
WordPress plugin Ally was carrying an SQL injection flaw that allowed data exfiltration.
Nine bugs were found in Google’s Looker Studio which could have allowed outside access.