News

SecurityWeek12h
In Other News: Hacker Helps Kill Informants, Crylock Developer Sentenced, Ransomware Negotiator Probed
SecurityWeek’s cybersecurity news roundup for July 4, 2025 provides a concise compilation of noteworthy stories.
SecurityWeek1d
Undetectable Android Spyware Backfires, Leaks 62,000 User Logins
A vulnerability in Catwatchful, an Android spyware posing as parental control software, exposed the credentials of over 62,000 customer accounts.
SecurityWeek1d
Cisco Warns of Hardcoded Credentials in Enterprise Software
A critical vulnerability (CVE-2025-20309) in Cisco's Unified CM and Unified CM SME communication management software could ...
SecurityWeek1d
Cybersecurity M&A Roundup: 41 Deals Announced in June 2025
Forty-one cybersecurity merger and acquisition (M&A) deals were announced in June 2025 and added to SecurityWeek tracker.
SecurityWeek1d
North Korean Hackers Use Fake Zoom Updates to Install macOS Malware
North Korean hackers are using fake Zoom invites to install ‘NimDoor’ malware — a rare Nim-compiled backdoor targeting macOS ...
SecurityWeek2d
Like Ransoming a Bike: Organizational Muscle Memory Drives the Most Effective Response
The key tool for surviving ransomware, or any attack scenario, is an incident response (IR) plan that is comprehensive, ...
SecurityWeek2d
US Calls Reported Threats by Pro-Iran Hackers to Release Trump-Tied Material a ‘Smear Campaign’
Pro-Iran hackers have threatened to release emails supposedly stolen from people connected to President Donald Trump.
SecurityWeek2d
Kelly Benefits Data Breach Impacts 550,000 People
As Kelly Benefits’s investigation into a recent data breach progressed, the number of impacted individuals continued to grow.
SecurityWeek2d
Qantas Data Breach Impacts Up to 6 Million Customers
Australian airline Qantas says personal information stolen from systems hosting the service records of 6 million customers.
SecurityWeek2d
Forminator WordPress Plugin Vulnerability Exposes 400,000 Websites to Takeover
A vulnerability in the Forminator WordPress plugin allows attackers to delete arbitrary files and take over impacted websites ...
SecurityWeek2d
CISA Warns of Two Exploited TeleMessage Vulnerabilities
CISA says two more vulnerabilities in the messaging application TeleMessage TM SGNL have been exploited in the wild.
SecurityWeek2d
Cyberattack Targets International Criminal Court
The International Criminal Court (ICC) has detected and contained a sophisticated and targeted cyberattack. The International ...