Iranian cyberattacks on US infrastructure surged 133% in the first half of 2025, according to new findings from Nozomi Networks. The cybersecurity firm reported that the transportation and manufacturing sectors absorbed the brunt of the increased activity, highlighting growing vulnerabilities in critical industrial systems. The data, released this week, points to an escalation in threat […]
A critical security flaw in McDonald’s McHire recruitment platform exposed the personal data of 64 million job seekers, according to cybersecurity researchers. The McDonalds McHire flaw exposed a vulnerability that allowed unauthorized access to sensitive applicant information stored on the platform. Hackers reportedly exploited the weakness to retrieve names, email addresses, phone numbers and employment […]
UK authorities have arrested a woman and three men in connection with cyberattacks targeting major British retailers, including Marks & Spencer, Co-op, and Harrods. The arrests come after an investigation into a series of digital intrusions that disrupted operations and raised concerns about data security. The UK arrests four in cyberattacks mark a significant step […]
French authorities have arrested Daniil Kasatkin, a Russian professional basketball player, on suspicion of involvement in ransomware activities. The move marks the latest instance in which France arrests Russian hoops star suspects at the request of the United States. Kasatkin, who previously played briefly for Penn State University, is now facing potential extradition over cybercrime […]
Qantas says 5.7 million customers were affected by a recent data breach that exposed limited personal information but did not allow unauthorized access to frequent flyer accounts. In an updated advisory, the airline clarified that while frequent-flyer numbers were among the leaked data, the breach did not include passwords or other credentials necessary to access […]
Iranian hackers targeting U.S. industries ramped up activity in late spring, according to a new report from Nozomi Networks. The cybersecurity firm observed a spike in attacks during May and June, with advanced persistent threat groups such as MuddyWater and APT33 leading the campaigns. These state-backed actors focused their efforts on industrial sectors, raising renewed […]
The UK Online Safety Law has drawn criticism for failing to address the spread of harmful misinformation, particularly content that remains legal but incites unrest. Observers point to last summer’s riots as a stark example of how misleading narratives can fuel real-world consequences without breaching any laws. While the legislation targets illegal material, it appears […]
Advanced Micro Devices has identified critical security vulnerabilities impacting a broad range of its processor families. The flaws, rooted in speculative execution mechanisms, expose AMD chips to data leakage through timing-based side-channel attacks. These vulnerabilities, outlined in four CVE entries, affect both enterprise-grade and consumer-grade environments, raising concerns about data confidentiality. AMD chips exposed to […]
The Apache Software Foundation has released version 2.4.64 of its HTTP Server, providing critical updates that address eight security vulnerabilities impacting all 2.4.x versions. This Apache fix for 8 flaws includes patches for issues such as HTTP response splitting, server-side request forgery (SSRF), and denial-of-service threats. These flaws posed risks to both server integrity and […]
The U.S. Cybersecurity and Infrastructure Security Agency added the Citrix Bleed 2 flaw to its Known Exploited Vulnerabilities catalog, citing active exploitation in the wild. Tracked as CVE-2025-5777, the vulnerability affects Citrix NetScaler ADC and Gateway products configured as VPN or AAA virtual servers, allowing unauthenticated attackers to steal session cookies and bypass multi-factor authentication. […]
Cybersecurity researchers are warning of active exploitation of a critical Citrix flaw hit by attackers, tracked as CVE-2025-5777 and dubbed “CitrixBleed 2.” The vulnerability affects NetScaler ADC and Gateway devices and allows unauthenticated actors to leak sensitive memory contents, including session tokens and passwords. Public proof-of-concept code has triggered over 200,000 scanning attempts across the […]
French police arrested a Russian basketball player suspected of involvement in a ransomware operation, according to reports from local media. The case has drawn attention due to the athlete’s lack of known technical expertise, raising questions about the charges. The incident marks the latest international cybercrime crackdown as authorities continue to pursue global ransomware networks. […]