Tag: security

‘Zombie Tech continues to haunt UK networks’: Decade-old vulnerabilities fuel 67 million attacks, exposing outdated, insecure systems across organisations nationwide

Decade-old vulnerabilities still drive millions of attacks across UK networks Hackers prefer easy targets left open by outdated, unpatched systems AI-driven scans expose weak networks at unprecedented speed and scale Across the United Kingdom, thousands of organisations continue operating computer systems with security holes that were first identified over ten…

Read More

‘Nearly two-thirds of spam came from US-based infrastructure’: Your free Gmail account could be helping criminals send 46% of all commercial spam while wearing down employees with email fatigue

Trusted email platforms are now the easiest entry point for attackers Spam is no longer noise; it actively drives successful phishing attacks Phishing links dominate because they blend into everyday communication flows The primary delivery method for commercial spam is compromised accounts and free email services like Gmail, but many…

Read More

‘PIN and data remain encrypted at rest’: This unhackable offline device is quietly solving a problem most companies don’t realize is about to cost them everything

The Aegis Padlock DT FIPS processes PINs on the device, not on the connected computer This drive functions where software-based encryption cannot, including embedded systems Epoxy coating and locked firmware prevent physical tampering and BadUSB attacks on the Padlock DT FIPS Most companies assume that encrypting their sensitive data is…

Read More

‘The Internet is falling down’: Critical cPanel CRLF injection vulnerability puts tens of millions of websites at risk of total compromise – hosting providers urged to apply CVE-2026-41940 patch immediately

New critical severity vulnerability allows for authentication bypass The vulnerability affects cPanel and WebHost Manager Attackers can gain full root administrator privileges over any server Researchers at watchTowr Labs have dissected a critical authentication bypass in cPanel and Web Host Manager (WHM) that allows remote attackers to gain full admin…

Read More

‘An unauthorized actor accessed certain Vimeo user and customer data’: Vimeo confirms security incident, blames attack on Anodot breach

A third‑party breach exposed certain Vimeo user and customer data The accessed information included metadata and some email addresses, but not video content or payment details Vimeo disabled the integration, engaged external investigators, and was threatened with ransom demands Popular video platform Vimeo has notified users some of their data…

Read More

‘The attacker completed in under five minutes’: Experts warn of North Korea-linked campaign using fake Zoom meetings to target crypto execs

State-sponsored attackers crafted convincing fake video calls to target cryptocurrency firms A clipboard hijack trick replaced benign commands with malware‑deploying code The operation enabled rapid credential theft, persistence, and full system compromise Security researchers Arctic Wolf have revealed details of a highly sophisticated campaign targeting North American Web3 and cryptocurrency…

Read More