Latest Cybersecurity News and Articles
12 March 2025
Organizations must recognize that security is not about the number of tools deployed, it is about ensuring those tools effectively disrupt the attack chain at every stage.
The post A Guide to Security Investments: The Anatomy of a Cyberattack appeared first on SecurityWeek.
12 March 2025
Zoom has patched five vulnerabilities in its applications, including four high-severity flaws.
The post Zoom Patches 4 High-Severity Vulnerabilities appeared first on SecurityWeek.
12 March 2025
FTC says reported losses to fraud exceeded $12.5 billion in 2024, with $5.7 billion lost to investment scams.
The post Fraud Losses Reached $12.5 Billion in 2024: FTC appeared first on SecurityWeek.
12 March 2025
Exploiting trust in the DeepSeek brand, scammers attempt to harvest personal information or steal user credentials.
The post Beware of DeepSeek Hype: It’s a Breeding Ground for Scammers appeared first on SecurityWeek.
12 March 2025
The China-nexus cyber espionage group tracked as UNC3886 has been observed targeting end-of-life MX routers from Juniper Networks as part of a campaign designed to deploy custom backdoors, highlighting their ability to focus on internal networking infrastructure.
"The backdoors had varying custom capabilities, including active and passive backdoor functions, as well as an embedded script that
12 March 2025
A joint advisory from the NCSC and international partners details the 15 most commonly exploited vulnerabilities in 2021.
12 March 2025
Organisations should follow NCSC advice and take action to improve their resilience with the cyber threat heightened.
12 March 2025
The NCSC has issued advice to UK organisations following an update from Microsoft on malicious cyber campaigns.
12 March 2025
The NCSC, FBI and DHS have issued a joint Technical Alert about malicious cyber activity carried out by the Russian Government.
12 March 2025
The NCSC, CISA, FBI and NSA publish advice on detection and mitigation of SVR activity following the attribution of the SolarWinds compromise.
12 March 2025
A joint advisory with international partners on the Iranian actor MuddyWater.
12 March 2025
A joint advisory with international partners highlights an Iranian APT exploiting Microsoft Exchange and Fortinet vulnerabilities
12 March 2025
The NCSC and international partners observe an increase in sophisticated, high-impact ransomware incidents against critical infrastructure organisations.
12 March 2025
Dragos case study reveals that Volt Typhoon hacked the US electric grid and stole information on OT systems.
The post China’s Volt Typhoon Hackers Dwelled in US Electric Grid for 300 Days appeared first on SecurityWeek.
12 March 2025
Fortinet has published 17 new advisories to inform customers about 18 vulnerabilities patched in its products.
The post Fortinet Patches 18 Vulnerabilities appeared first on SecurityWeek.
12 March 2025
The UK government's CYBERUK 2022 event takes place 10-11 May at the ICC Wales.
12 March 2025
This advisory highlights the sustained risk to UK companies involved as well as providing further details on the activity and guidance for any organisations affected.
12 March 2025
Cybercriminals don’t just demand money, they go after details like Social Security numbers, birth dates, and banking information to fuel future fraud.
12 March 2025
The Trump administration has cut millions of dollars in federal funding from two cybersecurity initiatives, including one dedicated to helping state and local election officials.
The post Trump Administration Halts Funding for Two Cybersecurity Efforts, Including One for Elections appeared first on SecurityWeek.
12 March 2025
New guidance to support UK construction projects has been jointly published between the NCSC, CPNI and BEIS.