Google's AI could be tricked into enabling spam, revealing a user's location, and leaking private correspondence, among other things, with just a calendar invite.

WinRAR flaw CVE-2025-8088 was serious but has been fixed in version 7.13.

A leading mobile device insurance and service network has initiated insolvency proceedings in the wake of a cyberattack. Selling properties and cutting staff numbers wasn't enough to save the business.

Ukraine's intelligence agency conducted a sustained distributed-denial of service attack on Russian forces in Crimea while independent hacking groups targeted the airline.

IT provider sued after it simply 'handed the credentials' to hackers — Clorox claims Cognizant gaffe enabled a $380m ransomware attack

Prodaft said the Steam Early Access game contains the Fickle Stealer, Vidar Stealer, and HijackLoader malware.

Microsoft said that critical vulnerabilities in SharePoint are being exploited by a potentially China-linked threat actor, Storm-2603, to deploy ransomware.

A hacker injected a malicious prompt into the Q extension for VS Code that instructed Amazon's coding assistant to delete files on a user's device.

The UK Home Office and National Cyber Security Centre announced that some organizations could be banned from making ransomware payments.

The 158-year established Knights of Old transportation company has collapsed in the wake of a ransomware attack, with 700 jobs lost.

A new key was issued in 2023, but it might not be well-supported ahead of the original key's expiration.

Microsoft's China-based engineers will no longer get to work on its U.S. DoD projects.

China-linked hackers are targeting Taiwan’s chipmakers and U.S. analysts with spear-phishing, Cobalt Strike, and custom malware. At least 15–20 organizations were hit since March, as Beijing seeks semiconductor self-sufficiency amid U.S. export controls.

The FCC announced yesterday that it plans to vote on new rules "to unleash submarine cable investment to accelerate the buildout of AI infrastructure, while securing cables against foreign adversaries, like China.

Gaskar Group denies that the attack was successful, but Ukrainian intelligence is reportedly telling a different story.

Fortunately, the example provided appears to be "prank software" rather than more sophisticated malware.

The "One Big Beautiful Bill Act" specifically looks to bolster the U.S. Indo-Pacific Command.

Mozilla's 0-Day Investigative Network (0din) revealed on July 10 that Google Gemini for Workspace could be tricked into telling users their accounts had been compromised.

A pair of security researchers have revealed vulnerabilities in the McHire chatbot Paradox developed for McDonald's that could have been exploited to reveal personal information about roughly 64 million people who have used the service to apply for jobs at their local franchises. (Hat-tip Wired.)

© Shutterstock

A security researcher discovered that the wireless RF communication between the first and last car of American trains isn't encrypted.

© Shutterstock