Latest Cybersecurity News

Instructure Breach Exposes Schools' Vendor Dependence

Dark Reading

Instructure Breach Exposes Schools' Vendor Dependence

ShinyHunters' attack on Instructure, which owns the widely used Canvas learning management system (LMS), carries big questions about the trust educational institutions put into their vendors.

Dark Reading1d ago1m2

Mirai-Based xlabs_v1 Botnet Exploits ADB to Hijack IoT Devices for DDoS Attacks

Mirai-Based xlabs_v1 Botnet Exploits ADB to Hijack IoT Devices for DDoS Attacks

xlabs_v1 botnet exploits ADB port 5555 to recruit IoT devices, enabling 21 DDoS methods and bandwidth-tiered attacks on gaming servers

The Hacker News1d ago4m2

Autonomous Offensive Security Firm XBOW Raises $35 Million

Autonomous Offensive Security Firm XBOW Raises $35 Million

The company raised another $35 million as an extension to its previously announced Series C funding round.

SecurityWeek1d ago2m2

Herd Security Raises $3 Million for AI-Powered Training Platform

Herd Security Raises $3 Million for AI-Powered Training Platform

The startup will invest in expanding its training categories, optimizing video generation, and growing its partnership ecosystem.

SecurityWeek1d ago2m2

Iranian APT Intrusion Masquerades as Chaos Ransomware Attack

Iranian APT Intrusion Masquerades as Chaos Ransomware Attack

Likely perpetrated by MuddyWater, the attack combined social engineering, persistence, credential harvesting, and data theft.

SecurityWeek1d ago3m3

MuddyWater Uses Microsoft Teams to Steal Credentials in False Flag Ransomware Attack

MuddyWater Uses Microsoft Teams to Steal Credentials in False Flag Ransomware Attack

MuddyWater used Teams phishing in 2026 to steal credentials, enabling stealthy data exfiltration and persistence without encryption.

The Hacker News1d ago7m2

The Hacker News Launches 'Cybersecurity Stars Awards 2026' — Submissions Now Open

CyberStars Awards 2026 launched as a global program recognizing cybersecurity excellence across products, companies, and professionals.

The Hacker News1d ago3m3

From Stuxnet to ChatGPT: 20 News Events That Shaped Cyber

Dark Reading

From Stuxnet to ChatGPT: 20 News Events That Shaped Cyber

As part of Dark Reading's 20th anniversary celebration, its staff looks back on 20 of the biggest newmaking events from the past two decades that shaped our industry and the risk landscape for today's security teams.

Dark Reading1d ago1m7

Romanian Extradited to US for Role in Hacking Scheme 17 Years Ago

Romanian Extradited to US for Role in Hacking Scheme 17 Years Ago

Gavril Sandu, 53, was indicted in 2017, but was arrested and extradited to the United States only in 2026.

SecurityWeek1d ago2m3

Your AI Agents Are Already Inside the Perimeter. Do You Know What They're Doing?

Your AI Agents Are Already Inside the Perimeter. Do You Know What They're Doing?

AI agents outpace IAM governance as 50% identity activity stays unseen, increasing enterprise security and compliance risks.

The Hacker News2d ago7m3

Attacks Abuse Windows Phone Link to Steal Texts & Bypass 2FA

Dark Reading

Attacks Abuse Windows Phone Link to Steal Texts & Bypass 2FA

In hard-to-detect attacks, hackers are dropping the CloudZ RAT and a fresh plugin, Pheno, to hijack the Windows-based bridge between PCs and smartphones.

Dark Reading2d ago1m2

CISA: Critical Infrastructure Must Master Isolation, Recovery