Canada Goose investigating as hackers leak 600K customer records

One threat actor responsible for 83% of recent Ivanti RCE attacks

New Clickfix Exploit Tricks Users into Changing DNS Settings for Malware Installation

Louis Vuitton, Dior, and Tiffany fined $25 million over data breaches

Claude LLM artifacts abused to push Mac infostealers in ClickFix attack

CISA Warns of Microsoft Configuration Manager SQL Injection Vulnerability Exploited in Attacks

Threat actor Allegedly Selling Critical Severity OpenSea 0-day Exploit Chain on Hacking Forums

AMOS infostealer targets macOS through a popular AI app

Romania's oil pipeline operator Conpet confirms data stolen in attack

Microsoft: New Windows LNK spoofing issues aren't vulnerabilities

287 Chrome Extensions Exfiltrate Browsing History From 37.4 Million Users

Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

GitLab Patches Multiple Vulnerabilities That Enables DoS and Cross-site Scripting Attacks

Coinbase Cartel Targets High-Value Sectors with Data-Theft-First Extortion Strategy

SSHStalker Botnet Uses IRC C2 to Control Linux Systems via Legacy Kernel Exploits

Microsoft Patches 59 Vulnerabilities Including Six Actively Exploited Zero-Days

Chinese cyberspies breach Singapore's four largest telcos

DPRK IT Workers Impersonating Individuals Using Real LinkedIn Accounts to Apply for Remote Roles

GuLoader Uses Polymorphic Code and Trusted Cloud Hosting to Evade Reputation-Based Defenses