Security News Feed Aggregated from trusted cybersecurity sources

Total Articles

Security News

Latest cybersecurity news from CISA, Krebs on Security, and other trusted sources

828

CVE Mentions

Sources

Filter by source: All Sources darkreading hackernews krebs sans

darkreading Jan 28, 2026 at 21:14

Fortinet Confirms New Zero-Day Behind Malicious SSO Logins

To stop the ongoing attacks, the cybersecurity vendor took the drastic step of temporarily disabling FortiCloud single sign-on (SSO) authentication for all devices.

Read Article

darkreading Jan 28, 2026 at 20:24

Consumers Reluctant to Shop at Stores That Don't Take Security Seriously

The retail sector must adapt as consumers become more cybersecurity-conscious. Increased attack transparency is a good place to start.

Read Article

darkreading Jan 28, 2026 at 16:19

China-Backed 'PeckBirdy' Takes Flight for Cross-Platform Attacks

In two separate campaigns, attackers used the JScript C2 framework to target Chinese gambling websites and Asian government entities with new backdoors.

Read Article

darkreading Jan 28, 2026 at 14:00

Surging Cyberattacks Boost Latin America to Riskiest Region

The region is up against tactics like data-leak extortion, credential-stealing campaigns, edge-device exploitation, and attackers leveraging AI.

Read Article

darkreading Jan 27, 2026 at 22:31

AI & the Death of Accuracy: What It Means for Zero-Trust

AI "model collapse," where LLMs over time train on more and more AI-generated data and become degraded as a result, can introduce inaccuracies, promulgate malicious activity, and impact PII protections.

Read Article

darkreading Jan 27, 2026 at 22:15

Vibe-Coded 'Sicarii' Ransomware Can't Be Decrypted

A new ransomware strain that entered the scene last year has poorly designed code and an odd "Hebrew" identity that might be a false flag.

Read Article

darkreading Jan 27, 2026 at 21:00

Critical Telnet Server Flaw Exposes Forgotten Attack Surface

While telnet is considered obsolete, the network protocol is still used by hundreds of thousands of legacy systems and IoT devices for remote access.

Read Article

darkreading Jan 27, 2026 at 20:07

Microsoft Rushes Emergency Patch for Office Zero-Day

To exploit the vulnerability, an attacker would need either system access or be able to convince a user to open a malicious Office file.

Read Article

darkreading Jan 27, 2026 at 18:20

'Stanley' Toolkit Turns Chrome Into Undetectable Phishing Vector

The malware-as-a-service kit enables malicious extensions to overlay pages on real websites without changing the visible URL, signaling a fresh challenge for enterprise security.

Read Article

darkreading Jan 27, 2026 at 16:41

WorldLeaks Extortion Group Claims It Stole 1.4TB of Nike Data

The sportswear brand is investigating an alleged breach of its network that exposed some 188,347 files of highly sensitive corporate data.

Read Article

darkreading Jan 27, 2026 at 16:41

WorldLeaks Extortion Group Claims It Stole 1.4TB of Nike Data

The sportswear brand is investigating an alleged breach of its network that exposed some 188,347 files of highly sensitive corporate data.

Read Article

darkreading Jan 27, 2026 at 13:08

Beauty in Destruction: Exploring Malware's Impact Through Art

Artistic initiatives turn cybersecurity into immersive exhibits at the Museum of Malware Art, transforming digital threats into thought-provoking experiences.

Read Article

darkreading Jan 27, 2026 at 13:00

Hand CVE Over to the Private Sector

How MITRE has mismanaged the world's vulnerability database for decades and wasted millions along the way.

Read Article

darkreading Jan 26, 2026 at 21:30

Sandworm Blamed for Wiper Attack on Poland Power Grid

Researchers attributed the failed attempt to the infamous Russian APT Sandworm, which is notorious for wiper attacks on critical infrastructure organizations.

Read Article

darkreading Jan 26, 2026 at 15:47

DPRK's Konni Targets Blockchain Developers With AI-Generated Backdoor

The North Korean threat group is using a new PowerShell backdoor to compromise development environments and target cryptocurrency holdings, according to researchers.

Read Article

darkreading Jan 24, 2026 at 00:55

2025 Was a Wake-Up Call to Protect Human Decisions, Not Just Systems

Cybersecurity must shift from solely protecting systems to safeguarding human decision-making under uncertainty and system failures.

Read Article

darkreading Jan 23, 2026 at 21:04

Swipe, Plug-in, Pwned: Researchers Find New Ways to Hack Vehicles

Security researchers exploited dozens of vulnerabilities in vehicle infotainment systems and EV chargers during the latest Pwn2Own contest at Automotive World 2026.

Read Article

darkreading Jan 23, 2026 at 20:56

Exploited Zero-Day Flaw in Cisco UC Could Affect Millions

Mass scanning is underway for CVE-2026-20045, which Cisco tagged as critical because successful exploitation could lead to a complete system takeover.

Related CVEs: CVE-2026-20045

Read Article

darkreading Jan 23, 2026 at 20:31

Europe's GCVE Raises Concerns Over Fragmentation in Vulnerability Databases

GCVE would enhance global collaboration, flexibility, and efficiency in tracking security flaws. Duplicate entries and a decentralization policy may create more chaos for defenders.

Read Article

darkreading Jan 23, 2026 at 16:45

Healthy Security Cultures Want People to Report Risks

The signs of an effective security culture are shifting as companies call on CISOs and security teams to raise their hands unabashedly.

Read Article

About Security News

This feed aggregates the latest cybersecurity news from trusted sources to help you stay informed about emerging threats, vulnerabilities, and security trends.

Our Sources

CISA Alerts - Official US Gov
Krebs on Security
BleepingComputer
The Hacker News
Dark Reading
SANS ISC

Security News

About Security News

Our Sources

Security Hub