Cybersecurity News
Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.
Google Targets Lighthouse PhaaS Behind iMessage/RCS Smishing Impersonating USPS and E‑ZPass
Google has filed a federal lawsuit against Lighthouse, a phishing‑as‑a‑service (PhaaS) platform allegedly used by threat actors to run high‑volume ...
Android Malware Update: 239 Malicious Google Play Apps and a 67% Surge in Mobile Attacks
Mobile threats accelerated sharply over the past year, according to new data from Zscaler. From June 2024 to May 2025, ...
Amazon Fire TV to Block Unauthorized Apps via Firmware Updates
Amazon is rolling out system-level restrictions on Fire TV devices that will prevent unauthorized apps—including popular piracy-focused streaming clients—from running ...
Operation SkyCloak: Tor‑obfuscated OpenSSH backdoor targets defense and government entities in Russia and Belarus
Researchers from Cyble and Seqrite Labs have uncovered a targeted espionage operation, dubbed Operation SkyCloak, that focuses on defense and ...
Cisco issues out-of-band fixes for UCCX: Critical Java RMI RCE and CCX Editor authentication bypass
Cisco has shipped out-of-band security updates for Unified Contact Center Express (UCCX), addressing multiple flaws, including two critical vulnerabilities: CVE-2025-20354 ...
CBO Confirms Cyber Incident: What We Know, Likely Vectors, and How Agencies Should Respond
The U.S. Congressional Budget Office (CBO) has confirmed a cyber incident affecting parts of its IT environment. According to the ...
SesameOp Backdoor Exploits OpenAI Assistants API for Stealthy Cloud C2, Microsoft DART Warns
Microsoft’s Detection and Response Team (DART) has identified a backdoor dubbed SesameOp that abuses the OpenAI Assistants API to establish ...
Akira Ransomware Names Apache OpenOffice in Alleged Breach, but ASF Rejects Data Theft Claims
Akira ransomware operators have added Apache OpenOffice to their leak site, asserting they stole 23 GB of data containing employee ...
Edge 142 ties on-device ML to Defender SmartScreen for faster scareware blocking
Microsoft is expanding security in Edge by connecting its local, on-device scareware detector to the cloud-based Defender SmartScreen service. The ...
DOJ: Former Incident Responders Accused of Aiding BlackCat Ransomware
U.S. federal prosecutors have charged three individuals — including two former cybersecurity professionals — with allegedly compromising the networks of ...
