The U.S. seized the 'web3adspanels.org' domain and database used by cybercriminals to store stolen bank login credentials.

The report contains statistics on various threats detected and blocked on ICS computers in Q3 2025, including miners, ransomware, spyware, etc.

MongoDB addressed a high-severity vulnerability that can be exploited to achieve remote code execution on vulnerable servers.

NVIDIA pays $20B to license Groq's LPU tech and hires founder Jonathan Ross, neutralizing a top inference rival while dodging antitrust blocks.

Apple settles with Brazil's CADE, agreeing to allow third-party app stores and external payments by April 2026. See the new 15% and 5% fee structures.

Microsoft clarifies it won’t rewrite Windows 11 in Rust with AI, despite bold claims by a senior engineer about replacing C and C++ by 2030.

CloudSEK’s TRIAD unmasks Silver Fox APT, a China-linked group using Valley RAT to target India while hiding behind misattributed tax phishing lures.

Synacktiv unmasks CVE-2025-54068, a critical Livewire hydration flaw, and Livepyre, a tool that achieves RCE even if the APP_KEY is known.

OpenAI is reportedly developing "conversational ads" for ChatGPT that adjust model weights to prioritize sponsors. Is the era of neutral AI ending?

AI Godfather Yoshua Bengio reveals a "reverse deception" hack: lie to your chatbot to bypass its sycophantic flattery and get honest, critical feedback.

Google is finally letting users change their @gmail.com address! Keep your data, photos, and history while updating your username via a new alias system.

Attackers are using a fake MAS domain (get.activate.win) to deploy Cosmali Loader and XWorm RAT via PowerShell. Verify your command before running it!

Fortinet reported active exploitation of a five-year-old FortiOS SSL VPN flaw, abused in the wild under specific configurations.

What you should Know?

Spotify shut down accounts after Anna’s Archive scraped and published data on 86 million songs, confirming action against unlawful scraping.

A June data breach exposed the personal information of more than 22 million Aflac customers, the company confirmed.

Pro-Russian hacking group Noname057 claimed responsibility for the cyberattack that disrupted La Poste's digital banking and online services

ParrotOS 7 launches with a full operating system rewrite, KDE Plasma 6, Debian 13 base, new security tools, AI categories, and RISC-V support.

CVE-2025-68615 is a critical Net-SNMP snmptrapd vulnerability enabling buffer overflow, service crashes, and potential remote code execution.

Trust Wallet urged users to update its Chrome extension after a security incident caused about $7 million in losses.

An NPM package with over 56,000 downloads stole WhatsApp credentials, hid its activity, and installed a backdoor.