The US intelligence agency confirms hackers exploiting flaws in Ivanti's VPN appliance have targeted organizations across the defense sector

Twitter’s Tor service is offline, almost a year after it first launched, after the company under Musk failed to renew its certificate

Apple might be ditching it’s freebie wired EarPod headphones this year. That’s a good thing for quite a few reasons

Dish said a ransomware attack is to blame for an ongoing, multiday outage and warned that hackers exfiltrated data from company systems.

London-based outsourcing giant Capita left a trove of data exposed in an unprotected AWS storage bucket for 7 years

Identity giant Okta says hackers stole data from all of its customers during a recent breach of its support systems

Mercedes accidentally exposed a trove of sensitive data after a leaked security key gave “unrestricted access” to company’s source code.

Researchers say the "AutoSpill" bug can exposes mobile-stored credentials. One password manager company said they plan to make changes.

Cyber-criminals are hitting thousands of servers across Europe and North America with ransomware using exploit for a flaw patched in 2021.

Google security researchers say hackers, including the notorious Russian hacking unit Sandworm, are exploiting the WinRAR zero-day bug.

The DOJ division confirmed the incident was caused by a ransomware attack that exposed sensitive law enforcement data.

At least 4 million Americans had health data stolen after hackers raided a MOVEit file transfer server operated by tech giant IBM.

Unknown hackers drained almost $200 million from the popular decentralized finance lending platform Euler Finance.

Malicious hackers are targeting long-discontinued Boa web servers to compromise energy sector organizations, including India's Tata Power.

A misconfigured cloud storage server belonging to BMW exposed sensitive company information, including private keys and internal data

The cloud company said it has evidence that a hacking group targeted a "small and specific" group of its customers.

Casepoint is investigating a cybersecurity incident after hackers claimed they compromised the legal tech platform to steal terabytes of data.

The virtual cell service said customers' data was exposed following "suspicious activity" relating to its primary network provider.

The Clop ransomware group claims it's hacked over a hundred organizations, including a hospital network, by exploiting a new zero-day flaw.

Credentials of close to 10,000 employees were stolen during the months-long hacking spree.

Fighting back against ransomware or extortion is no easy task. Two leading security experts explain what local and state governments can do.

Dish customers say they have been unable to access television streams or pay their bills online after a widespread outage.

Hackers exploited a previously undiscovered flaw in Ivanti’s MDM software to compromise a dozen Norwegian government agencies.

The personal data of more than 15 million individuals has been stolen by hackers exploiting a vulnerability in the MOVEit file transfer tool

The U.K.'s data protection regulator said it has received notice from the affected IT provider, suggesting evidence of a possible data breach.

The first-of-its-kind pledge has seen dozens of governments sign agree not to pay hackers' ransom demands.

A database containing the details of almost 500,000 RaidForums users has leaked online. Prosecutors seized the hacking forum in 2022.

LastPass' parent company says intruders stole the company's encryption key for securing its customers' backed up data.

The Russia-based ransomware gang ALPHV/BlackCat took credit for the ongoing cyberattack at the UnitedHealth Group health tech subsidiary.

The software house agreed to pay $3 million to settle charges relating to "misleading disclosures" about a 2020 ransomware attack.

The U.S. government dismantled the infrastructure of the notorious Qakbot malware, which caused millions of dollars of damage.

Russian state-sponsored hackers posed as technical support staff on Microsoft Teams to compromise dozens of global organizations.

The FTC continues its crackdown on data brokers with a settlement banning InMarket from selling consumers’ precise location data.

Multiple federal agencies have fallen victim to cyberattacks exploiting a security vulnerability in a popular file transfer tool

The British postal giant said much of the stolen data includes "technical program files and administrative business data."

Thousands of servers are spilling the medical records of millions of patients. Researchers say many patient images are at risk of tampering.

Meta's security teams have uncovered 10 malware families using ChatGPT-themed lures to spread malware on its platforms.

Dish has confirmed that hackers stole the personal details of almost 300,000 individuals during a February ransomware attack

The City of Dallas, Texas says a ransomware attack has downed 911 dispatch systems and forced the cancelation of jury trials.

TechCrunch has learned that the same actor also targeted another U.S. internet company and several international IT companies.

Hackers are exploiting a critical-rated vulnerability in Citrix ShareFile, the U.S. government’s cybersecurity agency says.

China-backed hackers have maintained access to US networks for "at least five years” with the goal of launching “destructive” attacks

Fertility tracking app Premom shared users’ sensitive information with third-party advertisers without their consent, the FTC alleges.

The hotel and casino giant said hackers stole driver’s license numbers and Social Security numbers for a "significant number of members."

Coinbase confirmed it was briefly compromised by the same hackers that targeted Twilio and Cloudflare in 2022. 

Mandiant linked the supply chain attacks to North Korea-backed hackers, likely as part of a long-running effort to steal cryptocurrency.

Researchers say hackers abused the security vulnerability, which affects all versions of Windows, to launch ransomware attacks.

Maximus, a U.S. government services company, says MOVEit hackers accessed the personal information of as many as 11 million individuals

Google says a Barcelona-based security company developed the exploits, which were used as far back as December 2018.

The personal data of approximately 40 million UK voters was exposed to hackers after the Electoral Commission fell victim to a cyberattack.

An international law enforcement operation led to the arrests of two core alleged members of the prolific DoppelPaymer ransomware operation.

The U.S. government is sounding the alarm over a 10/10 severity-rated security flaw that could compromise patients’ sensitive medical data.

The digital bank says hackers exploited a zero-day in Fortra's file transfer software, which allowed access to thousands of customers' data.

The FBI said in 2022 that dozens of U.S. entities, including manufacturing, energy and government, had been hit by RagnarLocker ransomware.

Thousands of organizations could be at risk from a Citrix zero-day that hackers have already abused to target U.S. critical infrastructure.

Researchers say a Tehran-linked cloud host provides service to dozens of state-sponsored hacking groups and commercial spyware operators.