The latest generations of Intel processors and AMD's older microarchitectures on Linux are vulnerable to new speculative execution attacks capable of bypassing current "Spectre" mitigations.

According to the Department of Justice (DoJ), a man has been arrested on charges related to hacking the US Securities and Exchange Commission's (SEC) X account in January 2024, resulting in a Bitcoin price spike.

Microsoft has recently uncovered a macOS vulnerability that can enable attackers to gain access to users' protected data and warned active exploitation may be taking place.

According to security researchers at ChecPoint, Microsoft appeared as the most impersonated brand in phishing attacks during the third quarter of 2024, with 61% of brand phishing attempts leveraging Microsoft branding.

Brazil's Federal Police recently announced the arrest of a hacker whose description matches that of the notorious leaker known as USDoD.  USDoD, aka EquationCorp, has leaked significant amounts of information stolen from major organizations.

Cisco recently announced patches for eight vulnerabilities in the firmware of ATA 190 series analog telephone adapters, including two high-severity flaws leading to configuration changes and cross-site request forgery (CSRF) attacks.

According to Netskope Threat Labs, most of the attributable malware used in attacks on their customers over the past year is linked to state-backed groups.

The National Security Agency (NSA), together with the Federal Bureau of Investigation (FBI), the US Cybersecurity and Infrastructure Security Agency (CISA), and others, has released a Cybersecurity Advisory (CSA) titled "Iranian Cyber Actors' Brute For

The US Department of Justice (DoJ) has announced charges against two Sudanese nationals for their participation in Distributed Denial-of-Service (DDoS) attacks conducted by the hacker group named "Anonymous Sudan." Anonymous Sudan has targeted critical

The North Korean threat actor "ScarCruft" exploited a Windows security flaw to infect devices with the "RokRAT" malware.

According to security researchers at Symantec, RansomHub is now the number one ransomware operation in terms of claimed successful attacks.  Overall, threat actors claimed 1255 attacks in the third quarter, down slightly from 1325 in Q2.

New variants of the Android banking trojan "TrickMo" have features for stealing a device's unlock pattern or PIN.