Google and security companies have warned iPhone users of DarkSword spy attack: What it is and how it may spy on iPhone users

Google and other cybersecurity companies, including iVerify and Lookout, have identified a new iPhone hacking technique. This ...
The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.
The Hacker News

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching cycles.

CarGurus Hack Exposes 12.4 Million Users After Social Engineering Attack

A massive data breach tied to automotive marketplace CarGurus has exposed approximately 12.4 million user records, with new details pointing to a targeted social engineering attack rather than a ...

Apple warns iPhone users to update software after mass hacking campaigns

Apple is encouraging people to update their iPhones after research pointed to vulnerabilities in older versions of the iOS operating system.

Hundreds of Millions of iPhones Can Be Hacked With a New Tool Found in the Wild

A powerful iPhone-hacking technique known as DarkSword has been discovered in use by Russian hackers. It can take over ...
Biometric Update

Sweden’s BankID breached by hacker group as gov’t prepares e-ID launch

The hacker group calls itself ByteToBreach and claims to have stolen a large dataset from CGI’s Swedish division, including source code.
HealthcareInfoSecurity

EU Belatedly Sanctions Chinese and Iranian Hackers

The European Union sanctioned three Chinese and Iranian hacking operations that have been under U.S. indictments or sanctions ...
GovInfoSecurity

AI Agents Hack Systems Without Being Asked

Be careful telling AI agents how to act, since they might end up hacking their way to an end goal. Agents assigned routine ...
CPO Magazine

Cyber Attack on Medtech Firm Stryker Linked to Iranian Government Hacking Group

A cyber attack that continues to impact the Stryker medtech group's business operations as of this writing has been linked to a pro-Palestine hacking group thought to be supported by the Iranian ...
CIO Dive

Even primitive AI-coded malware helps hackers move faster, thwart attribution

IBM researchers discovered an autonomously coded backdoor that they called unsophisticated but nonetheless ominous.