SecurityWeek33m
PayPal Phishing Campaign Employs Genuine Links to Take Over Accounts
If the user attempts to log in, however, the page automatically links the victim’s PayPal account with the email address of ...
SecurityWeek1h
Microsoft DRM Hacking Raises Questions on Vulnerability Disclosures
A research project into vulnerabilities affecting Microsoft’s PlayReady DRM raises some questions on responsible disclosure.
SecurityWeek12m
Major Addiction Treatment Firm BayMark Confirms Ransomware Attack Caused Data Breach
Substance abuse treatment provider BayMark Health Services says patient personal information was compromised in a data breach.
SecurityWeek17h
Exploitation of New Ivanti VPN Zero-Day Linked to Chinese Cyberspies
Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies.
SecurityWeek23h
SonicWall Patches Authentication Bypass Vulnerabilities in Firewalls
SonicWall has released patches for multiple vulnerabilities in SonicOS, including high-severity authentication bypass flaws.
SecurityWeek23h
GFI KerioControl Firewall Vulnerability Exploited in the Wild
Threat actors are exploiting a recent GFI KerioControl firewall vulnerability that leads to remote code execution.
SecurityWeek20h
Darktrace to Acquire Incident Investigation Firm Cado Security
Darktrace has announced the proposed acquisition of UK-based incident investigation firm Cado Security, reportedly for up to $100 million.
SecurityWeek22h
Medical Billing Firm Medusind Says Data Breach Impacts 360,000 People
Medical billing solutions provider Medusind has revealed that a data breach discovered in December 2023 impacts over 360,000 individuals.