A new Android attack technique that manipulates the runtime environment instead of modifying applications has been identified. The method, discovered by CloudSEK researchers, uses the LSPosed framework to interfere with system-level processes, allowing attackers to hijack legitimate payment apps without… Read More "Android OS-Level Attack Bypasses Mobile Payment Security"
Webinar: April 1, 2026 at 1PM ET – Register to Attend Agentic AI is reshaping identity security by autonomously planning, adapting, and executing controls across the enterprise. But the last mile of identity, tied to disconnected applications and manual processes,… Read More "Webinar Today: Agentic AI vs. Identity’s Last Mile Problem"
Here’s how open-source intelligence helps trace your digital footprint and uncover your weak points, plus a few essential tools to connect the dots 20 Nov 2025 • , 5 min. read Whatever the reason, we spend vast amounts of time… Read More "Find your weak spots before attackers do"
The UK government has claimed it has reduced its backlog of critical vulnerabilities by 75% and reduced cyber-attack fix times by 87%. Serious security weaknesses in public sector websites are fixed six times faster, cutting the average time from nearly… Read More "UK Vulnerability Monitoring Service Cuts Unresolved Security Flaws"
A US national was charged with hacking the decentralized cryptocurrency exchange Uranium Finance and causing it to shut down. The individual, Jonathan Spalletta, 36, of Rockville, Maryland, allegedly exploited smart contract vulnerabilities at Uranium twice in 2021 to drain large… Read More "US Charges Uranium Crypto Exchange Hacker"
Why your business needs the best-of-breed combination of technology and human expertise 24 Nov 2025 • , 4 min. read When I was in my mid-teens, I decided to get a job in a small local garage to learn how… Read More "MDR is the answer – now, what’s the question?"
A cyber espionage group linked to North Korea has been observed deploying a new malicious campaign using removable media infection tools to gain access to air-gapped systems. The group, APT37, is well-known hacking team active since at least 2012 and… Read More "North Korea’s APT37 Expands Toolkit to Breach Air-Gapped Networks"
The FBI issued an alert on Tuesday warning users about the data security risks associated with foreign-developed mobile applications. The alert says many of the top-grossing and most-downloaded apps in the US are created by foreign companies, particularly those from… Read More "FBI Warns of Data Security Risks From China-Made Mobile Apps"
Ravie LakshmananApr 01, 2026Vulnerability / Browser Security Google on Thursday released security updates for its Chrome web browser to address 21 vulnerabilities, including a zero-day flaw that it said has been exploited in the wild. The high-severity vulnerability, CVE-2026-5281 (CVSS… Read More "New Chrome Zero-Day CVE-2026-5281 Under Active Exploitation — Patch Released"
Social media influencers can provide reach and trust for scams and malware distribution. Robust account protection is key to stopping the fraudsters. 25 Nov 2025 • , 4 min. read It’s not an easy time to be an influencer. Brands… Read More "How cybercriminals are targeting content creators"
