The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2025-30066 to its Known Exploited Vulnerabilities catalog, warning of a supply chain compromise in GitHub Actions. The vulnerability, affecting tj-actions/changed-files,

Singaporean authorities have issued a warning about deepfake scams where cybercriminals impersonate CEOs and senior executives to manipulate employees into transferring funds. These fraudsters use AI-generated videos and voice synthesis

As of February 2025, the Medusa ransomware gang has successfully attacked over 300 organizations in critical infrastructure sectors worldwide. Security researchers tracking the group confirm that its primary targets include

On March 10, 2025, users of X (formerly Twitter) experienced widespread login failures and access issues, with multiple service disruptions recorded throughout the day. The hacktivist group Dark Storm Team

Starting April 1, 2025, Switzerland will enforce mandatory reporting of cyberattacks on critical infrastructure. The regulation, based on the amended Information Security Act (ISA), requires operators in sectors such as

Silk Typhoon, a China-linked hacking group previously known as Hafnium, has shifted its strategy to target IT supply chains for initial access to corporate networks. According to Microsoft Threat Intelligence,

A newly identified cyber-espionage campaign is targeting organizations in the United Arab Emirates (UAE), with researchers attributing it to a previously unclassified threat actor, UNK_CraftyCamel. The attackers are using Sosano,

The United Arab Emirates (UAE) is currently experiencing an unprecedented surge in cyber attacks, with reports indicating approximately 200,000 incidents daily attributed to global terror organizations. These attacks primarily target

U.S. Secretary of Defense Pete Hegseth has ordered U.S. Cyber Command to halt all planning against Russia, including offensive cyber operations. This directive, relayed to General Timothy Haugh, head of