Firefox 152 understands 'Sssh!'
As Google continues crippling Chrome ad-blockers, it's a good time to try Firefox
Security & Lifecycle News
Aggregated from vendor advisories, security research, and industry publications.
'Lorem Ipsum' Malware Pivots to ClickFix Delivery
New analysis shows the campaign, which uses compromised WordPress sites, may be linked to the ransomware and data extortion group Vice Society.
iRhythm Confirms Data Stolen in Hack
The digital health company said it learned of the breach on June 8 and the attackers demanded a ransom. The post iRhythm Confirms Data Stolen in Hack appeared first on SecurityWeek…
Microsoft faces down sueball, capacity problems in series of challenges
Misleading statements about Copilot and AI? Surely not!
Crooks found a new way to collaborate using Teams – by hiding command-and-control traffic
Custom malware routed communications through legitimate Microsoft services, making malicious activity look like routine corporate collaboration
UK to require ID or face scan before you can make social media accounts
Opening a new social media account in the UK will soon mean proving you're over 16 with an ID upload or a facial age scan, under a government ban on under-16s taking effect in spri…
Hacker Conversations: Isira Adithya, the Evolution of an Ethical Hacker
From building LED bulbs to graduating college and buying a house with money earned from bug bounties. The post Hacker Conversations: Isira Adithya, the Evolution of an Ethical Hack…
Cloud strategies have become more complicated than ever
With years of cloud experience, IT leaders thought they finally had firm control of their cloud strategies. And then came AI. Of course, cloud issues today extend beyond artific…
GhostTree Attack Abused Recursive Windows Junctions to Hide Malware
GhostTree uses recursive NTFS junctions to generate vast numbers of valid Windows file paths. Varonis explains how the technique could cause Microsoft Defender folder scans to neve…
Linux kernel 7.1 sends Intel 486 support to silicon heaven
More than 140,000 lines of code bite the dust as ancient CPUs, bus mice, and other legacy leftovers face the chop
FTC warns of record $3.5 billion losses to imposter scams in 2025
The U.S. Federal Trade Commission (FTC) warned that Americans lost $3.5 billion to imposter scams in 2025, with reported losses nearly tripling since 2020. [...]
Magnitude Emerges From Stealth Mode With $10 Million in Funding
The company is enhancing third-party risk management (TPRM) through autonomous AI agents. The post Magnitude Emerges From Stealth Mode With $10 Million in Funding appeared first on…
Non-x86 servers now nearly half the market, IDC says
Demand for AI systems plus the shortage of DRAM and NAND are shaping the global market
AI and Cybersecurity – Everything You Wanted to Know, But Were Afraid to Ask
From defending networks to enabling attacks, artificial intelligence is changing every aspect of cybersecurity. Here's what dozens of experts say security leaders need to understan…
New Rokarolla Android Malware Steals PINs, SMS Codes, and Crypto Wallet Funds
Security researchers at Zimperium's zLabs have documented a new Android banking trojan, Rokarolla, that targets 217 banking and cryptocurrency apps and packs 137 remote commands. …
Endpoint Security Startup Ent Emerges From Stealth With $100 Million Seed Round
Ent has developed an intent-aware platform designed to interpret user and agent behavior before risky actions are carried out. The post Endpoint Security Startup Ent Emerges From S…
NHS Palantir claims face scrutiny after data suggests uneven results
Campaign group says FOI figures show some trusts carried out fewer procedures than before
Cybercrime Group Claims Novo Nordisk Hack
The hack-and-leak group FulcrumSec claims to have stolen 1.3TB of data from the pharmaceutical giant. The post Cybercrime Group Claims Novo Nordisk Hack appeared first on SecurityW…
Can CISOs Trust Their Applications? TrustCloud Wants to Replace the Questionnaire
By continuously analyzing security, infrastructure, and governance data, TrustCloud aims to give CISOs a real-time view of application risk and board-ready assurance. The post Can …
NASA said nyet to Roscosmos plan to cut into leaky ISS segment
Crew sheltered in SpaceX Dragon as aging Zvezda segment's cracks continue to test orbital nerve
Cal Water Investigating Iranian Hackers’ Claims
California Water Service says there is no indication of operational disruptions to its water and wastewater systems. The post Cal Water Investigating Iranian Hackers’ Claims appea…
Cardiac monitor maker's security skips a beat as data thieves go for the jugular
Attackers used social engineering to access third-party business apps and steal patient information
White House Issues Memo to Bolster NSS Cybersecurity
NSPM-12 establishes a clear structure for NSS cybersecurity governance and accountability and reestablishes CNSS. The post White House Issues Memo to Bolster NSS Cybersecurity appe…
Survey: 94% of Incidents Involve Anonymized Infrastructure. Teams Are Still Reactive
Security teams have never had more IP data at their disposal. Every day, analysts ingest enrichment feeds, geolocation data, reputation scores, telemetry, and threat intelligence f…
Qualcomm said to be circling AI chip biz Tenstorrent in $10B RISC-V power play
Potential takeover would represent significant commitment to the open instruction set architecture
Flock Cameras Are Being Used for Stalking
There are over a dozen cases around the country where police officers are using the Flock surveillance camera system to obsessively and illegally stalk people. Alternate link.
Scammers keep scoring: Brits fleeced for £1.3B as Americans lose $3.5B to impersonators
More reasons to love social media and AI
Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages
Arch Linux suspended account registrations in response to the wave of malicious packages being uploaded to AUR. The post Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages app…
CISA warns of another cPanel plugin flaw exploited in attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has given U.S. government agencies three days to secure their servers against an actively exploited vulnerability (…
Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week
Bad actors are exploiting multiple security vulnerabilities in Fortinet FortiSandbox, according to threat intelligence firm Defused Cyber. In a post shared on X, the company said …