JFrog's latest report examines the most common vulnerabilities in 2022 and provides an in-depth analysis of the open-source security flaws that have the most impact on DevOps and DevSecOps teams. The report reveals that the severity of six of the top 10…

The ALPHV ransomware group, also known as BlackCat, has listed more than 6GB of data allegedly stolen from Ireland's Munster Technological University (MTU). The directory published on ALPHV's website claims to contain employee records and payroll…

Apple recently announced the release of updates for macOS, iOS, and Safari, and they all include a WebKit patch for a new zero-day vulnerability tracked as CVE-2023-23529.  The zero-day, described as a type confusion issue, can be exploited for…

Escalators, a popular mobile game available on Google Play Store and Apple's App Store, had its source code exposed on several hacker forums. The threat actor published a nearly 600 MB dataset of stolen data. The exposure of developers' intellectual…

Spain’s Policia Nacional has teamed up with the US Secret Service recently to dismantle a cybercrime gang that stole millions of dollars from US citizens and companies.  Nine suspected members of the group have been arrested, eight in Madrid and one…

Over the weekend of February 11-12, the Content Delivery Network (CDN) provider Cloudflare detected and mitigated dozens of "hyper-volumetric" Distributed Denial-of-Service (DDoS) attacks, including the largest HTTP DDoS attack on record. Most of the…

"Swiss Army Knife" malware is multi-purpose malware that can execute malicious actions throughout the cyber kill chain while evading security controls. According to Picus Security's analysis of over 550,000 real-world malware samples obtained from…

Healthcare organizations in the US are top targets for state-sponsored North Korean cyber threat actors attempting to fund espionage activities through ransomware and other cyberattacks. The US Homeland Security Department's Cybersecurity and…

In a new financially driven cyberattack campaign, hackers are using a variant of the Xorist commodity ransomware named 'MortalKombat' along with the Laplas clipper. Both malware infections are used to carry out financial fraud, with the ransomware…

In an attempt to infect developer systems with clipper malware, malicious actors have published over 451 Python packages on the Python Package Index (PyPI) repository. The libraries were discovered by the software supply chain security company Phylum,…

Due to their immense computing capability, quantum computers could undermine today's data encryption systems. Therefore, several partners, led by KEEQuant GmbH, are developing a new way to secure optical data transmission in wireless networks using light…

According to the Varonis 2021 Data Risk Report, most companies have insufficient cybersecurity practices and unsecured data, thus making them more vulnerable to cyberattacks and data loss. A single data breach costs a company an average of $3.86 million…