Were 16B Passwords Breached? The Claim Is Called Into Question
Research indicated that 16 billion passwords were exposed in what was reportedly the world’s largest data breach to date — however, some experts are questioning these claims.
PowerSchool Education Technology Company Announces Data Breach
PowerSchool, a California-based education technology company, recently announced a data breach that occurred between December 19 and December 28, 2024.
Could Increased MOVEit Transfer Scanning Signal Emerging Threat Activity?
An increase in scanning activity targeted MOVEit Transfer systems may indicate emerging threat activity.
New Flaw in IDEs Like Visual Studio Code Lets Malicious Extensions Bypass Verified Status
A new study of integrated development environments (IDEs) like Microsoft Visual Studio Code, Visual Studio, IntelliJ IDEA, and Cursor has revealed weaknesses in how they handle the extension verification process, ultimately enabling attackers to execute malicious code on developer machines. “We discovered that flawed verification checks in Visual Studio CodeRead More »New Flaw in IDEs Like Visual Studio Code Lets Malicious Extensions Bypass Verified Status
Critical Microsens Product Flaws Allow Hackers to Go ‘From Zero to Hero’
CISA has informed organizations about critical authentication bypass and remote code execution vulnerabilities in Microsens NMP Web+. The post Critical Microsens Product Flaws Allow Hackers to Go ‘From Zero to Hero’ appeared first on SecurityWeek.
LevelBlue to Acquire Trustwave to Create Major MSSP
LevelBlue has announced plans to acquire Trustwave to create the largest pure-play managed security services provider (MSSP). The post LevelBlue to Acquire Trustwave to Create Major MSSP appeared first on SecurityWeek.
Cloudflare Puts a Default Block on AI Web Scraping
The move could reshape how LLM developers gather information — and force new deals between creators and AI companies. The post Cloudflare Puts a Default Block on AI Web Scraping appeared first on SecurityWeek.
Iranian Blackout Affected Misinformation Campaigns
Dozens of accounts on X that promoted Scottish independence went dark during an internet blackout in Iran. Well, that’s one way to identify fake accounts and misinformation campaigns.
A New Maturity Model for Browser Security: Closing the Last-Mile Risk
Despite years of investment in Zero Trust, SSE, and endpoint protection, many enterprises are still leaving one critical layer exposed: the browser. It’s where 85% of modern work now happens. It’s also where copy/paste actions, unsanctioned GenAI usage, rogue extensions, and personal devices create a risk surface that most securityRead More »A New Maturity Model for Browser Security: Closing the Last-Mile Risk
263,000 Impacted by Esse Health Data Breach
Esse Health says the personal information of over 263,000 individuals was stolen in an April 2025 cyberattack. The post 263,000 Impacted by Esse Health Data Breach appeared first on SecurityWeek.