Authorities say LeakBase was "one of the world’s largest online forums for cybercriminals," and maintained an archive of ...

Security researchers say exploits used by governments to hack into iPhones have been found to be used by cybercriminals. They warned of an emerging market for "secondhand" exploits.

Verify has described the activity as the “first known mass iOS attack” campaign of its kind. Google said fragments of the exploit first appeared last February, with ties to an unnamed “customer of a ...

A highly sophisticated set of iPhone hijacking techniques has likely infected tens of thousands of phones or more. Clues suggest it was originally built for the US government.

A 22-year-old Alabama man pleaded guilty to extortion, cyberstalking, and computer fraud charges after hijacking the social media accounts of hundreds of young women (including minors).

A spear-phishing campaign by North Korean actors is abusing a legitimate feature of Microsoft Visual Studio (VS) Code to gain full remote control of targeted systems. In the campaign, discovered by ...

DeFi protocols must adopt a more principled approach to security to mature. They could use standardised specifications that constrain what a protocol is allowed to do. Many protocols are already ...

Hackers claim to be selling internal Target source code after posting samples online. The data allegedly includes developer files and system tools of a US retailer. This raises concerns about ...

A new report says a core ROM key for the Sony PS5 is now public. This key is part of the BootROM code that runs first when the console starts. The code checks if the boot file is real before the rest ...

Security firm Proofpoint has discovered that hackers have found a clever way to bypass multi-factor authentication (MFA) and thereby get their hands on accounts belonging to corporate users. In a ...

Microsoft 365 is under attack, China and Russia afflited hackers suspected. Updated December 23 with advice from a mobile security solutions expert regarding the Russian device code attacks targeting ...

The Zeroday Cloud hacking competition in London has awarded researchers $320,000 for demonstrating critical remote code execution vulnerabilities in components used in cloud infrastructure. The first ...