Critical ‘MongoBleed’ Bug Under Active Attack, Patch Now – Dark Reading
A memory leak security vulnerability allows unauthenticated attackers to extract passwords and tokens from MongoDB servers. – Read More
US Cyber Pros Plead Guilty Over BlackCat Ransomware Activity – Dark Reading
Two US citizens pleaded guilty to working as ALPHV/BlackCat ransomware affiliates in 2023, and both were previously employed by prominent security firms. – Read More
Russia-Aligned Hackers Abuse Viber to Target Ukrainian Military and Government – The Hacker News
The Russia-aligned threat actor known as UAC-0184 has been observed targeting Ukrainian military and government entities by leveraging the Viber messaging platform to deliver malicious ZIP archives. “This organization has…
Ten thousand firewalls are vulnerable to old vulnerability – CSO Online
Bleeping Computer reports that hackers are exploiting an old vulnerability in FortiOS that can be used to get around the two-factor authentication (2FA) requirement. The vulnerability, designated CVE-2020-12812, was patched…
Stress caused by cybersecurity threats is taking its toll – CSO Online
As cyber threats become more frequent and more complex, they’re causing visible, measurable damage to organizations’ reputations and bottom lines. But the damage doesn’t end there. Breaches — or at…
Taiwan subjected to 2.6 million Chinese cyberattacks a day in 2025 – CSO Online
Taiwan’s National Security Agency states that the number of Chinese cyberattacks against the country’s critical infrastructure increased by 6% in 2025, averaging 2.6 million attacks per day, Reuters reports. The…
Several countries investigate Elon Musk’s Grok after sexualized deepfakes on women and children – CSO Online
France and Malaysia have launched investigations against Elon Musk’s AI chatbot Grok, after it generated sexualized deepfakes of women and minors, Techcrunch reports. India has also demanded that X restrict…
Kimwolf Android Botnet Infects Over 2 Million Devices via Exposed ADB and Proxy Networks – The Hacker News
The botnet known as Kimwolf has infected more than 2 million Android devices by tunneling through residential proxy networks, according to findings from Synthient. “Key actors involved in the Kimwolf…
Review conveyancers’ fees, CILEX tells government – Law Gazette – Features
Legal executive body says conveyancers are taking on too many cases because the work makes little profit. – Read More
RondoDox Botnet Expands Scope With React2Shell Exploitation – Dark Reading
Recent attacks are targeting Next.js servers and pose a significant threat of cryptomining, botnet payloads, and other malicious activity to IoT networks and enterprises. – Read More
How the Organizational Risk Culture Standard can supercharge your cybersecurity culture – CSO Online
You don’t lose most cyber battles to code. You lose them to culture: A rushed approval. A silent near-miss. A leader who shrugs at weak signals. Tools don’t fix that.…
ContractPodAi rebrands as Leah – Legal IT Insider
By Neville Hawcock, RSGI Many people see a new year as an opportunity for change. But ContractPodAi is making a fresher start than most: from today it wants to be…
⚡ Weekly Recap: IoT Exploits, Wallet Breaches, Rogue Extensions, AI Abuse & More – The Hacker News
The year opened without a reset. The same pressure carried over, and in some places it tightened. Systems people assume are boring or stable are showing up in the wrong…
Cybersecurity firm turns tables on threat actors with decoy data trap – CSO Online
Cybersecurity firm Resecurity says it deliberately lured threat actors linked to Scattered Lapsus$ Hunters (SLH) alliance into a honeypot, after the group claimed that it had hacked the company and…
The State of Cybersecurity in 2025: Key Segments, Insights, and Innovations – The Hacker News
Featuring: Cybersecurity is being reshaped by forces that extend beyond individual threats or tools. As organizations operate across cloud infrastructure, distributed endpoints, and complex supply chains, security has shifted from…