Cybersecurity News
Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.
Discord disputes massive breach claim tied to outsourced support provider
Discord has publicly refused to pay a ransom to cybercriminals who claim they stole data on 5.5 million users. The ...
Mic‑E‑Mouse: Optical Mice Abused as “Microphones” in New Acoustic Side‑Channel Attack
Researchers at the University of California, Irvine have demonstrated Mic‑E‑Mouse, a novel acoustic side‑channel attack that repurposes modern high‑DPI optical ...
Outlook to Stop Rendering Inline SVG in Email to Reduce XSS Risk
Microsoft is rolling out a change to its email ecosystem: the web version of Outlook and the new Outlook for ...
Neon temporarily disabled after Broken Access Control exposes call data and transcripts
In late September 2025, the call-recording app Neon shot to the top of the Apple App Store—reaching the No. 2 ...
South Korea’s Daejeon Data Center Fires Expose Systemic Resilience Gaps Across Government IT
Two separate fires in one week at data centers in Daejeon, South Korea, triggered a nationwide disruption of public services ...
CVE-2025-53967: Command Injection in Figma MCP Allowed RCE via Fallback Curl
A critical security flaw in the popular Model Context Protocol (MCP) server for Figma, figma-developer-mcp, has been patched after researchers ...
Anthropic and UK AI Safety Institute: 250 Documents Can Trigger DoS Backdoors in LLMs
Anthropic, the UK AI Safety Institute, The Alan Turing Institute, and academic collaborators report that around 250 carefully crafted documents ...
Renault and Dacia UK disclose third‑party data breach: what customers and businesses should know
Renault and its subsidiary Dacia have notified UK customers about a data breach stemming from a cyberattack on a third‑party ...
Red Hat GitLab Breach Spurs Extortion Threats and Raises CER Report Risks
The cyber extortion landscape continues to consolidate as criminal crews specialize and collaborate. Scattered Lapsus$ Hunters has claimed responsibility for ...
RondoDox Botnet Targets Internet-Exposed IoT with Pwn2Own Techniques and n-day Exploits
Researchers at Trend Micro have identified RondoDox, a rapidly growing IoT botnet that systematically compromises internet-exposed devices using a broad ...
