Google says that a WinRAR exploit that has been patched six months ago remain a popular attack vector, especially for state-sponsored threat actors. The vulnerability allows malicious archives to install malware on critical Windows folders.

OpenSSL is a security standard that protects most of the internet, and cybersecurity researchers have recently discovered vulnerabilities in the standard that have been lying undetected for decades.

Microsoft is said to have cooperated with the FBI and released the backup BitLocker encryption key of one user stored in its servers to the agency after receiving a valid search warrant.

The 2026 AI Security & Cybersecurity Expert Bundle delivers 88 hours of training on AI, ethical hacking and real-world defense skills.

(via Cult of Mac - Your source for the latest Apple news, rumors, analysis, reviews, how-tos and deals.)

An anonymous blog claims that your Steam client continues broadcasting your log-on and log-off times, regardless of your privacy status. Your friends' clients just hide your profile, but your log data is still stored on the devices of other people.

China tells entities to ditch U.S. and Israeli cybersecurity software

Samsung has published a security advisory after a high-severity vulnerability was discovered in its Magician SSD management software on Windows.

Two former cybersecurity experts pled guilty to conspiracy to obstruct commerce by extortion for deploying ransomware against several victims. The perpetrators are facing 20 years in prison each, with sentencing set in March 2026.

French authorities have arrested a Latvian national suspected of installing malware aboard an Italian passenger ferry while it was docked in southern France.

A North Korean imposter was uncovered, working as a sysadmin at Amazon U.S., after their keystroke input lag raised suspicions with security specialists at the online retail giant.

Germany has formally summoned Russia’s ambassador in Berlin after publicly attributing a series of cyber and influence operations to Moscow’s GRU military intelligence agency.

A Slovenian security researcher published an analysis of Sipeed’s NanoKVM in Feburary that raises far-reaching concerns about the €30-€60 remote management device.

The Lighthouse Enterprise is a group of Chinese hackers that offers a complete service to scammers, from phishing websites all the way to sending millions of spam messages.

A former Intel software engineer who spent over a decade with the company allegedly stole several thousand documents, including confidential ones, after he was laid off.

Is the Louvre's weak cybersecurity a deeper symptom?

Cornell graduate student Robert Tappan Morris unleashed his eponymous worm upon the Internet 37 years ago, changing the face of cybersecurity.

Hackers are working with organised crime groups to steal physical freight, posing as brokers or carriers, deploying malware, and rerouting real-world shipments, according to new research from cybersecurity firm Proofpoint.

The hack of British car manufacturer, Jaguar Land Rover, has cost the UK economy as much as $2.5 billion, affecting more than 5,000 organizations as the breach brought the company and its entire supply chain to their knees.

China’s Ministry of State Security has taken to social media to boast about foiling a series of cyberattacks it says were directed by the U.S. National Security Agency.

Google says DPRK group UNC5342 is using EtherHiding to deliver backdoors and steal crypto, marking the first nation-state adoption of a tactic built for takedown-resistant attacks.