INC Ransomware claims massive data theft of 1.2 TB of sensitive data from Dollar Tree.
Posted inCybersecurity News

INC Ransomware claims massive data theft of 1.2 TB of sensitive data from Dollar Tree.

Dollar Tree, a leading discount retail chain with thousands of locations across North America, has reportedly fallen victim to a significant ransomware attack orchestrated by the cybercrime group known as INC Ransomware. The group claims to have exfiltrated approximately 1.2 terabytes of highly sensitive company and employee data, and is now threatening to publish the information if its ransom demands are not met.
The Scarlet Letter “V” – Google to begin publicly reporting the discovery of new vulnerabilities within 1 week of notifying the vendor.
Posted inCybersecurity News

The Scarlet Letter “V” – Google to begin publicly reporting the discovery of new vulnerabilities within 1 week of notifying the vendor.

Google’s Project Zero team has announced a new policy, effective July 29, 2025, to increase transparency around software vulnerabilities. Under this trial policy, Project Zero will publicly report the discovery of a new vulnerability within one week of notifying the affected vendor or project.
Agentic AI is coming for your children.. so OWASP issues security guidance for Agentic AI applications.
Posted inCybersecurity News

Agentic AI is coming for your children.. so OWASP issues security guidance for Agentic AI applications.

The Open Web Application Security Project (OWASP) has announced the publication of its Securing Agentic Applications Guide v1.0, a comprehensive, open-source framework designed to address the unique security challenges posed by agentic AI systems. Released on July 28, 2025, this guidance arrives in response to the rapid adoption of autonomous AI agents in business, critical infrastructure, and digital operations.
Apple addresses a critical Safari zero-day vulnerability during broad rollout of security updates.
Posted inCybersecurity News

Apple addresses a critical Safari zero-day vulnerability during broad rollout of security updates.

Apple this week rolled out a comprehensive set of security updates across its platforms to address several vulnerabilities, including a high-profile zero-day flaw in its WebKit browser engine. The vulnerability, tracked as CVE-2025-6558, has attracted acclaim and scrutiny due to its prior exploitation in the wild—most notably targeting users of Google Chrome earlier this month.
Chinese-linked Silk Typhoon hacking group files 15 patents for cyber espionage tools.
Posted inCybersecurity News

Chinese-linked Silk Typhoon hacking group files 15 patents for cyber espionage tools.

Recent investigations have revealed that several Chinese technology firms with connections to the state-sponsored hacking group Silk Typhoon (also known as Hafnium) have filed more than 15 patents related to advanced cyber espionage tools. The patents in question cover a wide array of capabilities, including tools for encrypted data extraction from endpoints, forensics on Apple devices, and remote access and control over routers and smart home infrastructure.