Latest Cybersecurity News
View all →From 17,000 to 1.1 Million Assets: How Lumen Technologies Rebuilt Exposure Management at Scale
Most enterprises assume their asset inventory is close enough to accurate. The evidence suggests otherwise. According to a survey of over 600 security leaders in…
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 105
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Novel Java-Based QuimaRAT Targets…
Supply Chain Risk in VSCode Extension Marketplaces
Wiz Research identified a pattern of secret leakage by publishers of VSCode IDE Extensions. This occurred across both the VSCode and Open VSX marketplaces, the…
Former ransomware negotiator gets 4 years for BlackCat attacks
A former employee of cybersecurity incident response company DigitalMint was sentenced to 70 months in prison for targeting U.S. companies in BlackCat (ALPHV) ransomware attacks.…
281 Popular VPN Apps from the Google Play Leaks Sensitive Data, Transfers Data Unencrypted
A new security study has found serious privacy and security issues in 281 popular Android VPN applications available on the Google Play Store. Researchers discovered…
Unpatched XRING Flaw in XQUIC Lets Remote Clients Crash HTTP/3 Servers
A single wrong variable on one line in XQUIC, Alibaba’s QUIC and HTTP/3 library, lets any remote client crash the server with a short burst…
Security Affairs newsletter Round 585 by Pierluigi Paganini – INTERNATIONAL EDITION
Security Affairs newsletter Round 585 by Pierluigi Paganini – INTERNATIONAL EDITION Pierluigi Paganini July 12, 2026 A new round of the weekly Security Affairs newsletter…
Recreating the Bell Labs Cafeteria
Anthropic’s Claude is named after Claude Shannon. I’ve read a couple of biographies on him, and one of my favorite things I’ve learned about that…
The Foundation Modern AppSec Is Still Missing: Code to Cloud, Rebuilt the Right Way
Modern development practices mean everything is defined in code: containers, infrastructure, APIs, and CI workflows. But security hasn’t kept up. Siloed scanners like SCA, IaC…