Third-party benefits administrator Navia Benefit Solutions says hackers stole the personal and health plan information of 2.7 million.

Over 7,500 Magento sites, including major brands and government services, were hit in an ongoing mass-defacement campaign.

Because attacker-supplied flow data is used in public flows, the bug leads to unauthenticated remote code execution.

Aura says the personal information of 35,000 customers was stolen from a marketing tool in a phone phishing attack.

Digital brand protection company Allure Security has raised $17 million in Series B funding to expand its platform and go-to-market efforts.

Oasis Security has raised $120 million in Series B funding to secure AI agents’ access across enterprise environments.

Russia-linked APT28 has exploited a high-severity XSS vulnerability in Zimbra in attacks against Ukrainian entities.

Cape offers a privacy-focused mobile virtual network operator (MVNO) service for consumers, enterprises, and governments. Privacy-first mobile carrier Cape announced ...

International operation disrupts several IoT botnets used for DDoS attacks, including Aisuru, Kimwolf, JackSkid, and Mossad.

How Iranian hackers built strike-ready infrastructure months before operation ‘Epic Fury’ to launch disruptive cyberattacks in response.

Protect emerged from stealth mode with $20 million in funding to stop cyberattacks through system behavior and user intent monitoring.

Cloaked plans to introduce AI agents designed to act on behalf of users to monitor, manage, and enforce privacy preferences and security postures.