Google Cloud is introducing AI-powered agents under its Gemini in Security suite, aimed at transforming cybersecurity operations by streamlining routine tasks and enhancing efficiency. The tools are designed to alleviate the manual workload of security teams, particularly by automating repetitive functions and accelerating technical processes such as the generation of regular expressions—a common but time-consuming […]
Cisco Systems is signaling a bold move into quantum computing by unveiling plans to interconnect smaller quantum machines into a unified, large-scale system. While much of the initiative remains in the theoretical and prototype stages, the company’s decision to disclose its ambitions underscores a strong internal belief in the viability of its approach. The announcement […]
A newly identified technique is allowing threat actors to bypass SentinelOne’s endpoint detection and response (EDR) system, enabling the deployment of Babuk ransomware without triggering alerts, according to Aon’s Stroz Friedberg Incident Response team. Dubbed “Bring Your Own Installer,” the method exploits a flaw in SentinelOne’s agent upgrade process, terminating protection processes and leaving systems […]
A critical vulnerability has been identified in Apache Parquet Java, an open-source columnar storage format, potentially exposing systems to remote code execution (RCE) attacks. The flaw, tracked as CVE-2025-46762, affects versions 1.15.1 and earlier, according to a disclosure. Attackers could exploit the vulnerability to execute arbitrary code on targeted systems, putting enterprise data and services […]
The UK’s Legal Aid Agency is investigating a cybersecurity incident that may have exposed sensitive financial information, the agency warned law firms. The breach, which has not yet been publicly detailed, could impact the financial data handled by the agency, which operates under the Ministry of Justice and manages billions of pounds in legal funding. […]
ClickFunnels, a popular sales funnel builder platform, is investigating a reported data breach after hackers leaked what they claim is business-related information. The company has not yet confirmed the scope or origin of the incident but has acknowledged ongoing efforts to assess the situation. The leaked data reportedly includes internal business files, although the authenticity […]
Cisco has released security updates addressing 35 vulnerabilities across multiple products, with a significant focus on its widely used IOS and IOS XE software platforms. Of these, 26 flaws were found in IOS and IOS XE, including 17 that have been classified as critical or high severity. The company has urged users to apply the […]
A U.S. federal jury has ordered Israeli cyber-intelligence firm NSO Group to pay approximately $168 million in damages to WhatsApp, owned by Meta Platforms Inc., over the unauthorized use of its servers to deploy the Pegasus spyware tool. The decision follows a federal judge’s earlier finding that NSO Group violated U.S. law by targeting more […]
The Qilin ransomware group emerged as the most active cybercriminal collective in April 2025, launching 74 attacks globally, according to a new threat intelligence report. The group’s rise follows the abrupt decline of RansomHub, which had led activity earlier in the year but posted only three attacks last month before its leak site went offline. […]
The California Privacy Protection Agency on Tuesday levied a six-figure fine against a national clothing retailer for allegedly mismanaging a consumer privacy portal, marking one of the agency’s first enforcement actions under the state’s privacy law. The retailer, whose name was not disclosed, was cited for operating a flawed system that may have hindered consumers […]
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued a brief advisory warning that “unsophisticated cyber actor(s)” are attempting to target and disrupt industrial technology systems used in the oil and gas sector. The alert, though limited in detail, highlights ongoing threats to critical infrastructure, particularly within the energy industry. CISA noted that the actors […]
A widely used open-source Go library, Easyjson, is under the exclusive control of developers based in Moscow who are affiliated with VK Group, a major Russian tech conglomerate, according to researchers at Hunted Labs. The JSON serialization tool is deeply embedded in critical infrastructure, including Kubernetes, Helm and Istio, raising concerns over software supply chain […]