Latest Cybersecurity News
View all →Daxin: 13-Year-Old China-Linked Malware Found Still Active on Manufacturer’s Network
Daxin: 13-Year-Old China-Linked Malware Found Still Active on Manufacturer’s Network Pierluigi Paganini July 18, 2026 Researchers found China’s Daxin rootkit and a new Stupig backdoor…
Cybersecurity needs more prevention and less reliance on cure
The limits of a detection-first model When we gather for industry forums like the RSAC Conference, the topics include automation, AI-driven response and operational resilience.…
Unpacking the 2025 Gartner Market Guide for CNAPP
At Wiz, our vision for cloud security has always been a unified, collaborative platform that empowers teams across the organization. That’s why we’re excited about…
Microsoft warns of surge in ACR Stealer attacks on customers
Microsoft has observed a surge in attacks using the ACR Stealer malware to steal browser-stored passwords, authentication tokens, and sensitive documents from its enterprise customers.…
New Spirals Ransomware Uses IIS Web Shell and PsExec to Encrypt IT Firm in Under 24 Hours
A previously unseen ransomware family dubbed “Spirals” struck an IT services company in South Asia in June 2026. Symantec’s Threat Hunter Team reports that the…
Your Period Tracker Is (Probably) Spying on You
Hours of San Francisco Police Department drone video footage exposed on the open web illustrates a new era of incredibly granular—and consequential—urban surveillance. Meanwhile, the…
EY Data Breach – Hackers Access Third-Party IT Support Platform and Steal Client Tax Documents
Ernst & Young LLP (EY) has confirmed a data security incident in which an unauthorized third party breached a third-party IT service management platform used…
The five step plan that cuts security budget waste
In this Help Net Security video, Viktor Bulanek, CTO of Penetrify, explains where security budget waste comes from. Budgets get built around vendor categories, compliance…
GoldenEyeDog Subgroup Linked to DigiCert Breach and Code-Signing Certificate Theft
Cybersecurity researchers have attributed the April 2026 DigiCert security incident to a threat activity cluster dubbed CylindricalCanine. Expel, which shared technical details of the event,…