McGraw Hill has confirmed a data breach tied to a Salesforce-related misconfiguration, after an extortion attempt ended with stolen data being released online. Independent breach…
Cisco has disclosed two vulnerabilities in Identity Services Engine, or ISE, and ISE Passive Identity Connector, or ISE-PIC, that can let an authenticated remote attacker…
A new cyber campaign tied to the UAC-0247 threat cluster has targeted Ukrainian local governments and municipal healthcare organizations, including clinics and emergency hospitals. The…
Two U.S. nationals have been sentenced to federal prison for helping North Korean remote IT workers pose as U.S.-based hires and land jobs at more…
Microsoft is investigating a Microsoft 365 web access issue tied to Google Chrome version 147. Publicly mirrored service health notices say the problem affects authentication…
A newly analyzed remote access trojan called SpankRAT uses a simple but effective trick to stay hidden. It injects its malicious payload into explorer.exe, which…
Microsoft has released KB5083769 for Windows 11 versions 25H2 and 24H2 as the April 2026 Patch Tuesday cumulative update. The release raises systems to build…
A new California privacy audit says many major ad-tech services still set tracking cookies even after users send a legally recognized opt-out signal. The research,…
Adobe has released security updates for Acrobat and Reader on Windows and macOS to fix two vulnerabilities that can let attackers execute code or read…
Composer has released security updates for two high-severity command injection vulnerabilities in its Perforce VCS driver. The project says developers should update to Composer 2.9.6…
November 21, 2025
1 comment 
