3+ hour, 43+ min ago  (347+ words) Grafana Labs officially disclosed that an unauthorized party gained access to its Git Hub environment by leveraging an access token, bypassing standard authentication perimeter controls. The company said threat actors managed to download data and engaged in extortion. After accessing…...

6+ hour, 41+ min ago  (339+ words) Manny Ataebi " Cerby Laurie Robb - Trellix Ashwini Pandey - Punjab National Bank Punjab National Bank has elevated Ashwini Pandey to the role of General Manager and Data Protection Officer. Pandey brings experience from banking security, risk, and information security management. He…...

2+ day, 18+ min ago  (207+ words) The week's incidents show cybercrime becoming faster and quieter, with supply chain attacks targeting developer ecosystems because compromising one package can spread malware to thousands of organizations. Ransomware groups are shifting tactics because encryption does not guarantee payments. Google researchers…...

2+ day, 3+ hour ago  (381+ words) Utah has introduced a new law that holds websites responsible if users bypass age verification using VPNs. The Online Age Verification Amendments, also known as Senate Bill 73, went into effect on May 6 after being signed by Governor Spencer Cox on…...

2+ day, 2+ hour ago  (464+ words) Privacy-focused VPN provider Windscribe (among other VPN providers) has warned that it may move its headquarters out of Canada if the country's proposed surveillance legislation, Bill C-22, becomes law. The company says the bill could force it to log user data,…...

2+ day, 4+ hour ago  (583+ words) Android 16 users may face a serious privacy concern after a newly disclosed security issue revealed that apps could potentially bypass VPN protections and expose a device's real IP address online. The issue reportedly affects all VPN services on Android 16, including…...

3+ day, 47+ min ago  (141+ words) The campaign disseminated backdoors such as Hello Door, http Malice, Mem Load, http Troy, Apple Seed, and Happy Door, leveraging legitimate tools such as VSCode and DWAgent. The cyberespionage campaigns predominantly targeted public and private entities within South Korea. However,…...

2+ day, 23+ hour ago  (211+ words) A targeted phishing attack directed at the personal Signal account of Donncha " Cearbhaill, head of Amnesty International's Security Lab, was recently intercepted. Following the initial intrusion attempt, " Cearbhaill investigated the attack vector and determined that he was likely one of…...

2+ day, 22+ hour ago  (266+ words) On May 12, 2026, a federal grand jury in the District of New Jersey returned an indictment against two Pakistani men and one Indian man living in Hong Kong in connection with an international narcotics trafficking operation." Waleed Shamim, 33, Sameer Shamim, 41, and…...

2+ day, 23+ hour ago  (475+ words) Question: If AI-driven discovery can surface vulnerabilities faster than teams can triage and patch them, which parts of the vulnerability management stack becomes obsolete? What should replace it?" George Manuelian, Chief Strategy Officer at Rapid Fort" The first casualty is…...