Cybersecurity

Attackers bypassed security protocols by manipulating a conversational AI layer designed to handle automated account recovery.

Two men were arrested in the Netherlands for allegedly violating sanctions by facilitating Russian influence operations through more than 800 seized servers.

Hackers linked to Russia's GRU compromised thousands of end-of-life routers to intercept OAuth tokens, bypassing multi-factor authentication without using malware.

Exposed files reveal that infrastructure belonging to the Brazilian DDoS protection provider was used to orchestrate attacks using compromised routers.

The April 2026 update addresses a critical SharePoint zero-day and the publicly disclosed 'BlueHammer' exploit in Windows Defender.

Instructure pulled its education platform offline after hackers defaced login pages with ransom demands targeting data from 275 million students and faculty.

Lawmakers are questioning CISA's internal security culture after a contractor published AWS GovCloud keys and agency secrets to a public GitHub account.

Jacob Butler, 23, faces hacking charges in the U.S. and Canada for allegedly operating an IoT botnet that launched record-shattering DDoS attacks.

Microsoft addressed 118 vulnerabilities this month, while partners like Apple and Mozilla reported massive surges in security fixes attributed to Anthropic’s Project Glasswing.

A massive data leak involving internal CISA credentials occurred after a contractor disabled security features on a public code repository.

Evidence from an exposed archive links Huge Networks to a massive botnet campaign, though the company claims the activity resulted from a security breach.