Hackers threaten to release massive cache of stolen Telefonica data.
Posted inCybersecurity News

Hackers threaten to release massive cache of stolen Telefonica data.

Telefónica, one of Europe’s largest telecommunications providers, is facing a cybersecurity crisis after a hacker claimed to have exfiltrated a vast trove of sensitive company data. The threat actor, operating under the alias “Rey” and associated with the Hellcat Ransomware group, has threatened to release the entire cache of stolen information unless the company meets undisclosed demands.
Researchers note a dramatic surge in Android malware incidents in the second quarter of 2025.
Posted inCybersecurity News

Researchers note a dramatic surge in Android malware incidents in the second quarter of 2025.

The Android ecosystem has experienced a dramatic surge in malware incidents during the second quarter of 2025, with security researchers reporting a 151% increase in detected threats compared to the previous quarter. This escalation is marked by a notable rise in adware trojans, banking trojans, and cryptocurrency-targeted malware, reflecting both the growing sophistication and organization of cybercriminal operations targeting Android users worldwide.
Researchers release technical details and a previously withheld detection script that can identify exploitation of Citrix Bleed 2 vulnerability.
Posted inCybersecurity News

Researchers release technical details and a previously withheld detection script that can identify exploitation of Citrix Bleed 2 vulnerability.

Security researchers at WatchTowr have published comprehensive technical details and a detection script to help organizations identify exploitation attempts targeting the recently disclosed CitrixBleed 2 vulnerability (CVE-2025-5777). This critical security flaw affects Citrix NetScaler ADC and Gateway devices and has raised significant concerns across the cybersecurity community due to its potential to expose sensitive information.
The 47-day SSL certificate is coming: What it means for website owners and IT cybersecurity.
Posted inCybersecurity News

The 47-day SSL certificate is coming: What it means for website owners and IT cybersecurity.

The world of digital security is on the cusp of a significant transformation. By March 15, 2029, the maximum validity period for public SSL/TLS certificates will be reduced from the current 398 days to just 47 days. This change, approved by the CA/Browser Forum and supported by major browser vendors and certificate authorities, is set to redefine how organizations approach website security and certificate management.
Ingram Micro Faces Major Global Outage, Internal Systems Remain Inaccessible
Posted inCybersecurity News

Ingram Micro Faces Major Global Outage, Internal Systems Remain Inaccessible

Ingram Micro, a leading global IT distributor, is grappling with a widespread outage that has rendered its internal systems and customer-facing portals inaccessible for over 48 hours. The disruption, which began early Thursday, July 3, has significantly impacted the company’s ability to process orders, manage service licenses, and support its vast network of partners and customers worldwide.
Taiwan’s National Security Bureau Issues Public Warning on Data Risks from Chinese Social Media Apps.
Posted inCybersecurity News

Taiwan’s National Security Bureau Issues Public Warning on Data Risks from Chinese Social Media Apps.

Taiwan’s National Security Bureau (NSB) has issued a formal public alert regarding significant data security risks posed by several Chinese social media applications, including TikTok (Douyin), Weibo, and RedNote (Xiaohongshu). The advisory follows a comprehensive review of these platforms’ data handling practices and their close ties to China, raising concerns about privacy and national security.
Researchers note a massive surge in .es domain abuse for large-scale phishing attacks.
Posted inCybersecurity News

Researchers note a massive surge in .es domain abuse for large-scale phishing attacks.

The cybersecurity landscape is witnessing a dramatic shift as .es domains, traditionally associated with Spain, have become a primary vector for large-scale phishing attacks. Recent data reveals a staggering 19-fold increase in the use of .es domains for phishing between Q4 2024 and Q1 2025, marking the most significant surge in abuse of a country-code top-level domain (ccTLD) in recent memory.