The Register reports: Google has pushed out an emergency Chrome update to fix two previously unknown vulnerabilities that attackers were already exploiting before the patches landed. The bugs, tracked as CVE-2026-3909 and CVE-2026-3910, affect core components of the browser and have prompted the usual warning from Google that technical details will remain under wraps until […]
Bleeping Computer reports: Canadian business process outsourcing giant Telus Digital has confirmed it suffered a security incident after threat actors claimed to have stolen nearly 1 petabyte of data from the company in a multi-month breach. Telus Digital is the digital services and business process outsourcing (BPO) arm of Canadian telecommunications provider Telus, providing customer support, […]
Security Week reports: Stryker is a Fortune 500 company that specializes in the manufacturing of surgical equipment, orthopedic implants, and neurotechnology. Headquartered in Michigan, the company employs approximately 56,000 people and reported over $25 billion in revenue for 2025. Its critical role in the healthcare supply chain makes it an essential partner for hospitals worldwide. […]
So you trusted your sensitive data to an app created by two young people and one of them thought a vulnerability alert was just a joke. … The app itself allows you to track how many times you masturbate, write down how watching porn makes you feel, and exchange tips and share your experience with others […]
HackRead reports: ShinyHunters, the notorious group of hackers, has issued a final warning to roughly 400 organizations, claiming to have successfully broken into their private records. The group is threatening to leak this sensitive information onto the internet unless their extortion demands are met. According to previous research firm Mandiant, the hackers are specifically targeting websites […]
The Washington Post reports: The Social Security Administration’s internal watchdog isinvestigating a complaint that alleges a former U.S. DOGE Service employee claimed he had access to two highly sensitive agency databases and planned to share the information with his private employer — a claim that, if true, would constitute an unprecedented breach of security protocols […]
The Wall Street Journal reports: President Trump signed an executive order Friday directing diplomatic, law enforcement and national security agencies to dismantle cybercriminal outfits. The order frames cybercrime groups, including Southeast Asian romance-scam farms and ransomware gangs, as transnational criminal organizations. It directs the Attorney General to give priority to prosecutions of cyber-enabled fraud and compels the […]
The Department of Justice announced yesterday the seizure of the LeakBase database, one of the world’s largest online forums for cybercriminals to buy and sell stolen data and cybercrime tools. According to an affidavit unsealed on March 3, the LeakBase forum had over 142,000 members and more than 215,000 messages between members. Available on the […]
TechCrunch reports: A group of hacktivists calling themselves “Department of Peace” claimed to have hacked the Department of Homeland Security (DHS), leaking allegedly stolen documents online. On Sunday, the nonprofit transparency collective DDoSecrets published data relating to contracts between DHS, Immigration and Customs Enforcement (ICE), and more than 6,000 companies, including defense contractors Anduril, L3Harris, Raytheon, and […]
Negligence Stirring Rise in Cyber Incidents
DigitNews reports: Two fifths (42%) of organisations reported an increase in malicious insider incidents over the past year, with the same amount reporting a rise in negligent incidents for the first time. This is according to Mimecast’s State of Human Risk Report, which found that this parity marks a fundamental shift in enterprise security where international […]