In a shocking betrayal of industry trust, two former cybersecurity professionals have pleaded guilty to federal charges for launching ransomware attacks against U.S. businesses. The pair, whose day jobs involved helping companies respond to hacks and negotiate ransoms, admitted to…
Microsoft Teams Outage Causes Global Messaging Delays and Service Interruptions
Microsoft Teams users worldwide experienced significant service disruptions on December 20, 2025, as the collaboration platform encountered widespread issues affecting messaging functionality and other critical service operations. The company has acknowledged the incident and is actively investigating the root cause.…
25,000+ FortiCloud SSO-Enabled Systems Vulnerable to Remote Exploitation
The Shadowserver Foundation has identified over 25,000 internet-facing Fortinet devices globally with FortiCloud Single Sign-On (SSO) functionality enabled, raising concerns about potential exposure to critical authentication bypass vulnerabilities. The non-profit security organization recently added fingerprinting capabilities for these systems to…
IT Security News Hourly Summary 2025-12-20 09h : 1 posts
1 posts were published in the last hour 8:2 : Hackers Weaponize SVG Files and Office Documents to Target Windows Users
Hackers Weaponize SVG Files and Office Documents to Target Windows Users
Cybersecurity researchers have uncovered a sophisticated email campaign deploying a commodity loader to distribute Remote Access Trojans and information stealers. The operation primarily targets manufacturing and government organizations across Italy, Finland, and Saudi Arabia, using highly evasive techniques. Multi-Vector Attack…
Cybersecurity Budgets are Going Up, Pointing to a Boom
KPMG finds cybersecurity budgets rising sharply as leaders invest in AI-driven defense, resilience, and smarter security operations. The post Cybersecurity Budgets are Going Up, Pointing to a Boom appeared first on Security Boulevard. This article has been indexed from Security…
Year-End Review: The Highs and Lows of Cybersecurity in 2025
Cybersecurity Today brings you a special year-end episode, featuring noteworthy guests Tammy Harper from Flare, Laura Payne from White Tuque, David Shipley from Beauceron Security, and John Pinard, co-host of Project Synapse. This episode delves into the pivotal cybersecurity stories…
Here’s What’s in the DOJ’s Epstein File Release—and What’s Missing
From photos of former president Bill Clinton to images of strange scrapbooks, the Justice Department’s release is curious but far from revelatory. This article has been indexed from Security Latest Read the original article: Here’s What’s in the DOJ’s Epstein…
Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says
Denmark has blamed Russia for a destructive cyberattack on a water utility, calling it part of Moscow’s hybrid campaign against Western critical infrastructure. Denmark has accused Russia of orchestrating destructive cyberattacks against a water utility in 2024, framing them as…
Microsoft Teams Down – Users Face Messaging Delays and Service Disruptions Worldwide
In a major disruption to remote work and collaboration, Microsoft Teams experienced a significant outage on Friday, affecting thousands of users across multiple regions. Reports of messaging delays, failed message deliveries, and issues with other service functions began surging around…
IT Security News Hourly Summary 2025-12-20 00h : 4 posts
4 posts were published in the last hour 23:2 : Surge of OAuth Device Code Phishing Attacks Targets M365 Accounts 22:55 : IT Security News Daily Summary 2025-12-19 22:33 : I Built a RAG Bot to Decode Airline Bureaucracy (So…
Surge of OAuth Device Code Phishing Attacks Targets M365 Accounts
Financially motivated and nation-state threat groups are behind a surge in the use of device code phishing attacks that abuse Microsoft’s legitimate OAuth 2.0 device authorization grant flow to trick users into giving them access to their M365 accounts, Proofpoint…
IT Security News Daily Summary 2025-12-19
149 posts were published in the last hour 22:33 : I Built a RAG Bot to Decode Airline Bureaucracy (So You Don’t Have To) 22:33 : News brief: Browser security flaws pose growing risk 21:32 : Palo Alto Networks, Google…
I Built a RAG Bot to Decode Airline Bureaucracy (So You Don’t Have To)
This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Blog Read the original article: I Built a RAG Bot to Decode Airline Bureaucracy (So You Don’t…
News brief: Browser security flaws pose growing risk
<p>Web browsers are critical gateways that enable an organization’s employees, partners and customers to access online resources, corporate systems, business applications and sensitive data, making their security a chief concern for organizations today.</p> <p>The rise of hybrid work environments, increased…
Palo Alto Networks, Google Cloud Expand Partnership in Multibillion-Dollar Deal
Palo Alto Networks and Google Cloud expand their partnership in a multibillion-dollar deal to secure AI workloads as attacks on AI infrastructure surge. The post Palo Alto Networks, Google Cloud Expand Partnership in Multibillion-Dollar Deal appeared first on TechRepublic. This…
4 Pillars of Network Risk Reduction: A Guide to Network Security Risk Management
Large enterprises today find themselves stuck in the “messy middle” of digital transformation, managing legacy on-premise firewalls from Palo Alto, Check Point, and Fortinet while simultaneously governing fast-growing cloud environments…. The post 4 Pillars of Network Risk Reduction: A Guide…
NCC Group Taps Qualys to Extend Managed Security Service into Shadow IT Realm
NCC Group this week revealed it has allied with Qualys to expand the scope of its managed attack surface management (ASM) services to address instances of shadow IT. Amber Mitchell, lead product manager for ASM at NCC Group, said the…
Apache Log4j Flaw Enables Interception of Sensitive Logging Data
The Apache Software Foundation has released a critical security update for its widely used Log4j logging library. A newly discovered vulnerability, tracked as CVE-2025-68161, allows attackers to intercept or redirect sensitive log data by exploiting a flaw in how the software…
Hackers Leverage Gladinet Triofox 0-Day Vulnerability to Run Malicious Code
A critical remote code execution vulnerability in Gladinet Triofox is now under active exploitation by threat actors, and security researchers have demonstrated that weaponizing the flaw requires far more sophistication than initial analyses suggest. CVE-2025-12480, tracked by UNC6485, represents a…
Cloud Atlas Exploits Office Vulnerabilities to Execute Malicious Code
The Cloud Atlas threat group, active since 2014, continues to pose a significant risk to organizations in Eastern Europe and Central Asia through sophisticated attacks leveraging legacy Microsoft Office vulnerabilities. Security researchers have documented the group’s expanded arsenal and evolving…
Mapping the Emerging Alliance Between Qilin, DragonForce, and LockBit
In mid-September 2025, the ransomware landscape witnessed a significant development when DragonForce announced an alliance with Qilin and LockBit on a Russian underground forum. The announcement, posted on September 15, 2025, claimed the three groups were joining forces to navigate…
BlueDelta Hackers Target Users of Popular Ukrainian Webmail and News Service
Russian state-sponsored threat group BlueDelta has conducted a sustained credential-harvesting campaign targeting users of UKR.NET, one of Ukraine’s most popular webmail and news services, between June 2024 and April 2025. According to research by Recorded Future’s Insikt Group, the operation…
Hundreds of Cisco customers are vulnerable to new Chinese hacking campaign, researchers say
Cisco warned that Chinese government hackers are exploiting a zero-day in some of its products. Researchers now say there are hundreds of vulnerable Cisco customers. This article has been indexed from Security News | TechCrunch Read the original article: Hundreds…