LATEST POST
Half of exposed React servers remain unpatched amid active exploitation
The Register reports: Half of the internet-facing systems vulnerable to a fast-moving React remote code execution flaw remain unpatched, even as exploitation has exploded into more than a dozen active attack clusters ranging from bargain-basement cryptominers to state-linked intrusion tooling. That’s the assessment from Alon Schindel, VP of AI and Threat Research at Wiz, who says CVE-2025-55182 […]
Defense Bill Would Require New Cyber Requirements for Some DoD Telecom Contracts
VitalLaw reports: The Department of Defense would have to add new cybersecurity requirements to its contracts for telecom services when those services are used for “sensitive national security functions” under legislation released yesterday by the House Armed Services Committee. The committee released a compromise version of the National Defense Authorization Act (NDAA) for Fiscal Year […]
Ukrainian hacker charged with helping Russian hacktivist groups
Bleeping Computer reports: U.S. prosecutors have charged a Ukrainian national for her role in cyberattacks targeting critical infrastructure worldwide, including U.S. water systems, election systems, and nuclear facilities, on behalf of Russian state-backed hacktivist groups. On Tuesday, 33-year-old Victoria Eduardovna Dubranova (also known as Vika, Tory, and SovaSonya) was arraigned on charges related to her […]
Romanian National Sentenced in Louisiana to One Year in Prison for Access Device Fraud
The United States Attorney’s Office for Eastern District of Louisiana issued a press release about the sentencing of a Romanian national who was arrested one week after installing skimming devices at three locations in Louisiana: Acting U.S. Attorney Michael M. Simpson announced that ANDREI FAGARAS (“FAGARAS”), age 35, a Romanian national, was sentenced on December 2, 2025 […]
FinCEN Issues Financial Trend Analysis on Ransomware
On December 4, the U.S. Department of the Treasury Financial Crimes Enforcement Network (FinCEN) issued a Financial Trend Analysis of ransomware incidents since January 2022: FinCEN
Privacy concerns raised as Grok AI found to be a stalker’s best friend
Your personal security may be at greater risk than you knew, thanks to Grok AI. Bitdefender reports: Grok, the AI chatbot developed by Elon Musk’s xAI, has been found to exhibit more alarming behaviour – this time revealing the home addresses of ordinary people upon request. And, as if that wasn’t enough of a privacy […]
Japan: 17-yr-old suspected of carrying out cyberattack with AI help
There have been many articles written about the threat of artificial intelligence (AI) being used to program or assist cybercrime, but very little evidence of it actually happening. Here is a case where it has reportedly happened. Kyodo News reports: A 17-year-old boy was served an arrest warrant on Thursday on suspicion of breaching the […]
Portugal updates cybercrime law to exempt security researchers
Good news for “white hat” researchers. Bleeping Computer reports: Read more at Bleeping Computer.