News Room

Latest headlines of cyber security news from across the web

New Jersey Sues Discord for Allegedly Failing to Protect Children
New Jersey Sues Discord for Allegedly Failing to Protect Children

The New Jersey attorney general claims Discord’s features to keep children under 13 safe from sexual predators and harmful content are inadequate. [...]

This ‘College Protester’ Isn’t Real. It’s an AI-Powered Undercover Bot for Cops
This ‘College Protester’ Isn’t Real. It’s an AI-Powered Undercover Bot for Cops

Massive Blue is helping cops deploy AI-powered social media bots to talk to people they suspect are anything from violent sex criminals all the way to vaguely defined “protesters.” [...]

‘Stupid and Dangerous’: CISA Funding Chaos Threatens Essential Cybersecurity Program
‘Stupid and Dangerous’: CISA Funding Chaos Threatens Essential Cybersecurity Program

The CVE Program is the primary way software vulnerabilities are tracked. Its long-term future remains in limbo even after a last-minute renewal of the US government contract that funds it. [...]

Trump administration decides to fund CVE cybersecurity tracker after all
Trump administration decides to fund CVE cybersecurity tracker after all

The government will continue funding the Common Vulnerabilities and Exposures (CVE) program. In a statement to The Verge, US Cybersecurity and Infrastructure Agency (CISA) spokesperson Jared Auchey said it “executed [...]

The CVE program for tracking security flaws is about to lose federal funding
The CVE program for tracking security flaws is about to lose federal funding

Funding is about to run out for the Common Vulnerabilities and Exposures (CVE) program – a system used by major companies like Microsoft, Google, Apple, Intel, and AMD to identify [...]

4chan’s ‘cesspool of the internet’ is down after apparently being hacked
4chan’s ‘cesspool of the internet’ is down after apparently being hacked

4chan appears to be down following a major hack that reportedly exposed its source code. A user on a competing messaging board claimed responsibility for the attack on Monday night [...]

Critical Erlang/OTP SSH pre-auth RCE is 'Surprisingly Easy' to exploit, patch now

A critical vulnerability in the Erlang/OTP SSH, tracked as CVE-2025-32433, has been disclosed that allows for unauthenticated remote code execution on vulnerable devices. [...]

Entertainment services giant Legends International discloses data breach

Entertainment venue management firm Legends International warns it suffered a data breach in November 2024, which has impacted employees and people who visited venues under its management. [...]

Windows NTLM hash leak flaw exploited in phishing attacks on governments

A Windows vulnerability that exposes NTLM hashes using .library-ms files is now actively exploited by hackers in phishing campaigns targeting government entities and private companies. [...]

IOTW: Victoria Court recordings exposed in suspected ransomware attack

Unauthorized access disrupted audio visual in-court technology network impacting video recordings, audio recordings and transcription services [...]

IOTW: Russia-linked cyber attack targets Ukraine’s biggest phone operator

Powerful attack knocked out internet access and mobile communications, damaging IT infrastructure [...]

Russian FSB accused of spear-phishing campaign against UK, US and allies

Star Blizzard has targeted academia, defense, governmental organizations and politicians with spear phishing campaigns [...]