Attack & News

Latest cybersecurity news, threat reports, and attack campaigns

All Feeds Attack & News Gov Alerts / ISAC Vulnerability Alerts Privacy & Governance Fraud & Scams

511 articles

Network Log Analysis: Why Collecting Logs is Not Enough

Network Log Analysis helps teams turn raw logs into useful alerts, timelines, audit records, and incident evidence instead of stor…

NEWSThe Register1 day ago

Miasma worms its way onto GitHub as attack kit goes open source

As if there weren't enough package poisonings to worry about

NEWSSecurity Magazine1 day ago

OT Cybersecurity Is Maturing, But Visibility Is Still a Challenge

23% of survey respondents have visibility into only half of their OT environment.

NEWScriticalBleeping Computer1 day ago

Microsoft June 2026 Patch Tuesday fixes 3 zero-day, 200 flaws

Today is Microsoft's June 2026 Patch Tuesday, with security updates for 200 flaws and three publicly disclosed zero-day vulnerabil…

NEWScriticalBleeping Computer1 day ago

Microsoft June 2026 Patch Tuesday fixes 6 zero-days, 200 flaws

Today is Microsoft's June 2026 Patch Tuesday, with security updates for 200 flaws, including five publicly disclosed zero-day vuln…

NEWSBleeping Computer1 day ago

Windows 11 KB5094126 & KB5093998 cumulative updates released

Microsoft has released Windows 11 KB5094126 and KB5093998 cumulative updates for versions 25H2/24H2 and 23H2 to fix security vulne…

NEWSThe Hacker News1 day ago

Meta to Use Off-Site Business Data for Feed and AI Personalization

Meta on Tuesday announced that it will use information shared by other businesses to personalize users' feed and responses from it…

NEWSSecurityWeek1 day ago

Anthropic Launches Claude Fable 5: Mythos-Class AI With Cybersecurity Guardrails

The AI giant also announced that Project Glasswing partners are being given access to the upgraded Mythos 5. The post Anthropic La…

NEWSWired Security1 day ago

Anthropic Offers Mythos Upgrade for Cyber Partners and a ‘Safe’ Version for the Rest of You

Anthropic is releasing Claude Mythos 5 to trusted organizations and Claude Fable 5 to the public, a version it says can’t be used…

NEWSCyberScoop1 day ago

Anthropic’s new model is Mythos on a leash

Claude Fable 5 offers Mythos-level performance for most tasks with safeguards on sensitive topics. Anthropic claims testing found…

NEWSHackread1 day ago

E-Signature Security Checklist Before Selecting an E-Signature Tool

Electronic signature security starts before the first document is sent. A company needs to know how files are…

NEWShighSecurityWeek1 day ago

OpenSSL Patches High-Severity Vulnerability Found With AI

A total of 18 vulnerabilities have been patched in the latest OpenSSL releases, including many that were potentially discovered by…

NEWSThe Hacker News1 day ago

Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code

Veeam has released security patches to address a critical flaw in its Backup & Replication software that could result in remote co…

NEWSThe Hacker News1 day ago

Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues

Microsoft on Monday confirmed that it temporarily removed some GitHub repositories in response to a recent security incident that…

NEWShighCyberScoop1 day ago

CISA is rethinking how it prioritizes risks and vulnerabilities for feds, private sector

Acting director Nick Andersen said a binding operational directive is en route for agencies, and that more specific discussions ne…

NEWSBleeping Computer1 day ago

XBOW tests Anthropic's Mythos Preview for offensive security

Anthropic's Mythos Preview was highly effective at finding vulnerability candidates, especially when analyzing source code. XBOW e…

NEWSThe Register1 day ago

Apple’s iOS 27 goes all agentic on compromised passwords, promises to change them with one tap

iBiz might not win the AI race, but analysts say it's focusing on features people may actually use

NEWShighBleeping Computer1 day ago

GitHub disables Microsoft repos pushing password-stealing malware

Microsoft removed 73 repositories across its Azure, microsoft, Azure-Samples, and MicrosoftDocs organizations on GitHub, disruptin…

NEWScriticalSecurity Magazine1 day ago

Oxford University Discloses Data Breach

Oxford University disclosed it experienced a data security incident.

NEWSInfosecurity Magazine1 day ago

75% of Firms Deploy Vulnerable Code Amid Pressure on CISOs, Report Finds

Checkmarx report warns that business pressure is among the reason security leaders let security compliance slip

NEWShighSecurityWeek1 day ago

Claude Mythos Turns N-Days Into N-Hours With Rapid Exploit Creation

Public LLM models with safeguards turned off can also build working exploits, increasing patch gap risks. The post Claude Mythos T…

NEWSInfosecurity Magazine1 day ago

AI Coding Adoption Hits 97% but Governance Lags Behind

Most dev teams use AI coding assistants but only 30% have full governance in place

NEWShighBleeping Computer1 day ago

New Veeam vulnerability exposes backup servers to RCE attacks

Veeam has released security updates to patch a critical Backup & Replication security flaw that can be exploited to gain remote co…

NEWScriticalCyberScoop1 day ago

Cisco customers encounter another SD-WAN zero-day under attack

The defect marks the seventh actively exploited zero-day in Cisco SD-WANs this year, and the vendor has yet to release a patch. Th…

NEWScriticalInfosecurity Magazine1 day ago

Critical phpBB Flaw Lets Attackers Hijack Any Account with One Request

Critical phpBB authentication bypass lets attackers hijack any account with one request

NEWSSecurityWeek1 day ago

New Platform Uses Cryptographic Invisibility to Protect AI-Built Applications

Atsign’s AI Architect applies cryptographic protections to agentic software development, aiming to prevent attackers from exploiti…

NEWSThe Register1 day ago

Signal says UK plan to scan devices for nude images 'endangers us all'

Encrypted messaging app warns device-level checks could be repurposed for censorship

NEWShighThe Hacker News1 day ago

WinRAR Flaw Exploited by Russia-Aligned Groups to Deploy Stealers in Ukraine

Two Russia-aligned cyber attack campaigns have continued to exploit a security flaw in WinRAR to target Ukrainian organisations, a…

NEWScriticalSecurityWeek1 day ago

SAP Patches Critical NetWeaver, Commerce Vulnerabilities

The flaws could lead to the disclosure of sensitive information, memory corruption, and disruption of normal system usage. The pos…

NEWScriticalThe Register1 day ago

Chrome's zero-day Whac-A-Mole continues with fifth exploited bug of the year

Google paid researcher a tidy $55K bounty for its discovery