Information Security News Blog
-
A digital signature should prove that an Android app truly comes from its original developer. New research shows how a single leaked signing key can turn that trust mechanism into a supply-chain weakness. According...
-
An innocuous cloud-based file collaboration platform recently became the conduit for a sophisticated espionage operation. The notorious Chinese threat actor, Mustang Panda, orchestrated targeted attacks against Indian government agencies and the energy sector, exploiting...
-
An email masking service fundamentally exists to sever the link between an individual and their authentic electronic identity. However, a critical security flaw recently discovered within Apple’s Hide My Email feature completely undermines this...
Recent revelations have surfaced regarding the notorious FortiBleed malicious operation. Researchers have definitively linked this campaign to more than mere credential harvesting. Instead, they attribute it directly to the Lynx/INC ransomware syndicate. Security experts...
AI browsers are taking on increasingly ambitious roles as autonomous agents. Yet the more they act on a user’s behalf, the more dangerous blind trust in page context becomes. Researchers at LayerX have described...
Strix are autonomous AI penetration testing agents that act just like real hackers – they run your code dynamically, find vulnerabilities, and validate them through actual proof-of-concepts. Built for developers and security teams who...
In a normal war, diplomats at least mark pauses on paper. In cyberspace, though, attacks run nonstop, with no clear front line. Israel has seen a sharp rise in Iran-linked cyber incidents during the...
The United States Department of Homeland Security is actively investigating a severe security breach. Unknown assailants compromised one of their primary information-sharing platforms, the Homeland Security Information Network (HSIN). This critical system allows federal...
Japanese manufacturing giant Nidec Corporation recently disclosed a significant cybersecurity incident affecting its Taiwanese subsidiary, Nidec Chaun Choung Technology. On June 22, 2026, IT specialists discovered the devastating remnants of a sophisticated ransomware attack...
Libya’s central bank says hackers stole part of its internal data, according to Libya Review. This news comes weeks after a cyberattack first hit its IT systems. A sample of internal bank files has...
Major data leaks rarely begin with hard proof. The Temu case follows that same pattern. A loud claim on a shadow forum can point to a real breach. Or it can point to an...
Unidentified threat actors successfully breached the National Association of Insurance Commissioners (NAIC). They exploited a critical vulnerability within Oracle PeopleSoft. Consequently, the organization temporarily suspended assigning investment ratings to insurance assets. Furthermore, they disabled...
Over five billion devices currently support rapid proximity file sharing. Popular mechanisms include Apple’s AirDrop and Google’s Quick Share. Consequently, these features simplify sharing photos and documents without exchanging contact information. However, researchers from...
Guest complaints usually demand immediate attention from hospitality professionals. Consequently, malicious actors recently exploited this urgency. They targeted Booking.com partners across Japan using deceptive emails. Attackers sent these messages posing as dissatisfied guests. They...
A browser search bar often looks safe. A bad Chrome extension, though, can turn it into a data trap before any results even show up. Microsoft recently found an extension called “Search for perplexity...