The cybercriminals claiming responsibility for Ingram Micro's ransomware attack put a deadline on leaking its data nearly a month after the raid. The SafePay ransomware group posted Ingram Micro to its leak blog on July 29, saying it intends to release 3.5 TB of company data on August 1. In typical double extortion ransomware scenarios, attackers post information about the victim to a leak blog as a pressure tactic. READ MORE...
An innovative prompt injection attacker can steal your data using nothing but a browser extension. Browser security vendor LayerX published research today dedicated to an attack it discovered that represents a "weakness" in how browser instances of AI tools interact with the Web browser itself. Called "man in the prompt," the exploit relies on the fact that for many generative AI/LLM-powered tools, the input field is part of the page's Document Object Model (DOM). READ MORE...
Minnesota Governor Tim Walz has activated the National Guard in response to a crippling cyberattack that struck the City of Saint Paul, the state's capital, on Friday. The city is currently working with local, state, and federal partners to investigate the attack and restore full functionality, and says that emergency services have been unaffected. However, online payments are currently unavailable, and some services in libraries and recreation centers are temporarily unavailable. READ MORE...
The average cost of a data breach for U.S. companies jumped 9% to an all-time high of $10.22 million in 2025, as the global average cost fell 9% to $4.44 million, IBM said in its 20th annual Cost of a Data Breach Report Wednesday. While shorter investigations are pushing down costs globally, reflecting the first decline in five years, IBM found higher regulatory fines, along with detection and escalation costs, are driving up the ultimate recovery price in the United States. READ MORE...
The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday released an updated advisory about the cybercrime collective Scattered Spider, warning that the group continues to unleash a wave of cyberattacks around the world using several new intrusion techniques. The notorious gang has expanded its targeting in recent months to include retailers, insurers and airlines in multiple countries. READ MORE...
Unmonitored artificial intelligence tools are making data breaches costlier, according to a new report from IBM. One in five organizations surveyed said they'd experienced a cyberattack because of security issues with "shadow AI," and those attacks cost an average of $670,000 more than breaches at firms with little or no shadow AI, IBM said in its annual Cost of Data Breach report. READ MORE...
Apple on Tuesday announced patches for dozens of vulnerabilities across its mobile and desktop operating systems, including fixes for a bug exploited in the wild. Tracked as CVE-2025-6558, the exploited flaw was disclosed in mid-July, when Google patched it in Chrome, crediting its Threat Analysis Group for reporting it and warning that it had been targeted in attacks as a zero-day. The security defect is described as an insufficient validation of untrusted input. READ MORE...
What would we do without the web browser? For most of us, it's our gateway to the digital world. But browsers are such a familiar tool today that we're in danger of giving them a free ride. In fact, there are plenty of rogue extensions masquerading as legitimate ad blockers, AI assistants, or even security tools that are designed to steal our data, send us to malicious sites and flood our screen with popups. READ MORE...
An emerging ransomware cybercriminal group is putting its own twist on file encryption, with a Linux variant of its malware that can run up to 100 encryption threads in parallel and supports partial encryption. The Gunra ransomware group first came onto the cybercriminal scene in April, with techniques targeting Windows systems that were inspired by the now-defunct Conti group, according to Trend Micro. READ MORE...
Lenovo devices are affected by several vulnerabilities, including ones that could allow attackers to deploy persistent implants on targeted systems, firmware security and supply chain risk management company Binarly reported on Tuesday. Binarly discovered a total of six flaws in the Insyde BIOS of Lenovo IdeaCentre and Yoga all-in-one desktop devices, specifically the System Management Mode (SMM), an operating mode designed for low-level system management. READ MORE...
Hackers were spotted exploiting a critical SAP NetWeaver vulnerability tracked as CVE-2025-31324 to deploy the Auto-Color Linux malware in a cyberattack on a U.S.-based chemicals company. Cybersecurity firm Darktrace discovered the attack during an incident response in April 2025, where an investigation revealed that the Auto-Color malware had evolved to include additional advanced evasion tactics. READ MORE...