GCHQ’s cyber security division has urged businesses to brace for Iranian cyber attacks after Britain backed the US-Israeli war against Iran.

Military action in Iran has increased the potential of cyberattacks from Iranian sponsored actors and hacktivists, and criminal groups aligned with Iran.

Last week, CISA's acting director was reassigned to a new division within DHS and the agency is operating under a partial shutdown.

Analysts say organizations should remain vigilant, though early indications show Iran-linked hackers have overstated their success.

As attacks increasingly target suppliers of all sizes, organizations must adopt consistent standards and resilient practices.

CrowdStrike Global Threat Report warns how adversaries are leveraging AI to make campaigns more efficient and more effective

A cyber attack on the largest telecommunications service provider in the Netherlands, Odido, has leaked the personal information of over 6 million customers.

The vulnerability, a Qualcomm zero-day, is an integer overflow in the Graphics subcomponent, which means, Adam Boynton, senior enterprise strategy manager at Jamf, told me, “an attacker could cause severe memory corruption, allowing them to bypass security controls and gain unauthorised control over the system.”

A data breach at the University of Hawaiʻi Cancer Center exposed the Social Security numbers of as many as 1.15 million people to computer hackers, the university said Thursday, providing more details about a ransomware attack UH first reported to the Legislature in December.

The Oasis researchers document a vulnerability chain that can be initiated from any website the AI agent (or its user) visits, without users needing to interact in any way or being at all aware that they are being compromised.

John Hultquist suggests “aggressive” Iranian cyber attackers will target the US and its Gulf allies with plausibly deniable ransomware attacks, hacktivist campaigns and more