senhasegura, a globally recognized leader in Privileged Access Management (PAM), announces its evolution into Segura, marking a new chapter for the company and its mission to deliver futureproof identity security. Founded in Brazil in 2009, senhasegura quickly earned international recognition…
Category: EN
Canada launches breach risk self-assessment online tool
Privacy Commissioner of Canada Philippe Dufresne has launched a new online tool that will help businesses and federal institutions that experience a privacy breach to assess whether the breach is likely to create a real risk of significant harm to…
Canadian Hacker Linked To Anonymous Charged In Texas GOP Hack: Cyber Security Today for March 31, 2025
Cybersecurity Today: Hacktivism, Solar Power Vulnerabilities, and Global Phishing Challenges In this episode of Cybersecurity Today, host David Shipley covers multiple cybersecurity stories including: a Canadian hacker charged for the 2021 Texas GOP hack, vulnerabilities in solar power gear, France’s…
Document converter warning, Resurge exploits Ivanti, Blacklock hackers exposed
FBI warns of increase in free online document converter scams Resurge malware exploits Ivanti flaw BlackLock hackers exposed through leak site vulnerability Thanks to today’s episode sponsor, Qualys “Overwhelmed by noise in your cybersecurity processes? Cut through the clutter with…
Navigating the API Security Landscape: Lessons from GoDaddy’s FTC Settlement
In today’s digital landscape, APIs (Application Programming Interfaces) are essential for modern business operations. They facilitate seamless connectivity and data exchange across diverse platforms and services, driving innovation and efficiency. However, this interconnectedness also brings significant security and privacy challenges.…
23andMe users delete data as company files for bankruptcy and seeks buyer
DNA testing company 23andMe has filed for bankruptcy. Tens of thousands of people are now racing to delete their genome profiles from the company’s website.… The post 23andMe users delete data as company files for bankruptcy and seeks buyer appeared…
Canon Printer Vulnerability Allows Attackers to Execute Arbitrary Code
A security vulnerability, tracked as CVE-2025-1268, has been found in certain Canon printer drivers, potentially allowing attackers to execute arbitrary code. The flaw, categorized as an out-of-bounds vulnerability, affects printer drivers for office multifunction printers, small office printers, production printers, and laser…
Cybersecurity in 2025: The Biggest Threats and How to Protect Yourself
The year 2025 is critical for cybersecurity as cyber threats are advancing unprecedentedly. AI-driven attacks, deepfake scams, and state-of-the-art ransomware schemes have become more prevalent. Businesses and individuals must remain vigilant against these emerging dangers. Implementing various security measures, adopting…
ClickFix Captcha – A New Technique Hackers Used to Deliver Infostealers, Ransomware, & Quakbot Malware
Cybercriminals are leveraging fake CAPTCHA verification pages dubbed ClickFix to distribute malware, including infostealers, ransomware, and the notorious Qakbot banking trojan. This technique manipulates users into executing malicious commands disguised as routine “verify you are human” prompts. The attack begins…
Mitel Alerts Users to Severe XSS Vulnerability in MiContact Center
Mitel has issued a security advisory (MISA-2025-0003) to notify users of its MiContact Center Business software about a high-severity reflected cross-site scripting (XSS) vulnerability. The vulnerability, identified in its Legacy Chat component, poses significant risks, allowing attackers to execute malicious…
Cybersecurity news headlines trending on Google
New Malware Crocodilus Targets Crypto Wallet Credentials Malware gangs are continually evolving their tactics to steal sensitive information, especially in the ever-growing world of cryptocurrency. Recently, a new malware variant called Crocodilus has emerged, specifically targeting mobile users in Spain…
The Critical Role of Backup and Encryption in Ransomware Defenses
In today’s increasingly digital world, ransomware attacks have become one of the most pervasive threats to businesses and individuals alike. Ransomware is a type of malicious software that locks a victim’s files or entire system, demanding a ransom to restore…
Multiple Dell Unity Vulnerabilities Allow Attackers to Compromise Systems
Dell Technologies has released a security advisory detailing multiple critical vulnerabilities in its Dell Unity storage systems and related software. These vulnerabilities, if exploited, could allow attackers to gain unauthorized access, execute arbitrary commands, or even compromise the affected systems…
Two things you need in place to successfully adopt AI
Organizations should not shy away from taking advantage of AI tools, but they need to find the right balance between maximizing efficiency and mitigating organizational risk. They need to put in place: 1. A seamless AI security policy AI may…
U.S. DOJ Seizes $8.2 Million from Hackers Linked to Pig Butchering Scam
The U.S. Department of Justice has successfully seized over $8.2 million in cryptocurrency tied to an elaborate “pig butchering” fraud operation that victimized dozens of Americans. On February 27, 2025, the U.S. Attorney’s Office for the Northern District of Ohio…
New Ubuntu Linux Vulnerabilities Let Attackers Exploit Kernel Components
A new set of security vulnerabilities discovered in Ubuntu Linux has raised concerns about kernel exploitation risks. Researchers at the Qualys Threat Research Unit (TRU) have uncovered three critical bypasses affecting Ubuntu’s unprivileged user namespace restrictions, potentially allowing attackers to…
Critical PHP Vulnerability Let Hackers Bypass the Validation To Load Malicious Content
A critical vulnerability in PHP’s libxml streams has been identified, potentially impacting web applications that rely on the DOM or SimpleXML extensions for HTTP requests. The flaw, tracked as CVE-2025-1219, involves the incorrect handling of the content-type header when a…
Only 2-5% of application security alerts require immediate action
The large volume of security alerts, many created by automated tools, is overwhelming security and development teams, according to the 2025 Application Security Benchmark report by Ox Security. The report is based on an analysis of over 101 million application…
Exegol: Open-source hacking environment
Exegol is a community-driven hacking environment, which helps users deploy hacking setups quickly and securely. It’s made for penetration testers, CTF players, bug bounty hunters, researchers, defenders, and both new and experienced users. Exegol offers clean, secure environments. Each project…
UK Cybersecurity Weekly News Roundup – 31 March 2025
UK Cybersecurity Weekly News Roundup – 31 March 2025 Welcome to this week’s edition of our cybersecurity news roundup, bringing you the latest developments and insights from the UK and beyond. UK Warned of Inadequate Readiness Against State-Backed Cyberattacks Cybersecurity…