Researchers reveal severe vulnerabilities in Ruckus Networks platforms that remain unpatched, leaving networks at risk.

Researchers reveal severe vulnerabilities in Ruckus Networks platforms that remain unpatched, leaving networks at risk.

Critical security vulnerabilities have been identified in Ruckus Networks’ flagship management platforms, Virtual SmartZone (vSZ) and Ruckus Network Director (RND). Despite the severity of these flaws, no official patches have been released, leaving enterprise and public sector networks at significant risk.
Computer hacker holding a large metal lock and key

AiLock ransomware guide – mechanisms, infection vectors, and proven defense strategies.

AiLock ransomware has rapidly emerged as a significant cybersecurity threat in 2025, targeting both organizations and individuals with sophisticated encryption tactics and disruptive capabilities. Here we give you an in-depth look at AiLock’s mechanisms, infection vectors, and—most importantly—proven strategies for defending against this evolving menace.
Marks and Spencer (M&S) reveals recent cyberattack was a sophisticated impersonation attack against a third-party supplier network.

Marks and Spencer (M&S) reveals recent cyberattack was a sophisticated impersonation attack against a third-party supplier network.

Marks & Spencer (M&S) confirmed that its recent ransomware incident was the result of a highly sophisticated impersonation attack targeting its third-party supplier network. The breach ultimately enabled the deployment of the notorious DragonForce ransomware, causing significant disruption to the company’s operations and impacting millions of customers.
Samsung announces major security and privacy updates for upcoming Galaxy smartphones.

Samsung announces major security and privacy updates for upcoming Galaxy smartphones.

Samsung Electronics has unveiled a comprehensive suite of security and privacy upgrades for its upcoming Galaxy smartphones. These enhancements will be introduced with the launch of One UI 8, Samsung’s latest software interface based on Android 16, and are designed to address the evolving landscape of mobile threats while supporting the company’s expanding portfolio of AI-powered features.
A newly discovered vulnerability, Count(er) Strike, enables unauthorized users to extract sensitive data from the widely used ServiceNow service management suite.

A newly discovered vulnerability, Count(er) Strike, enables unauthorized users to extract sensitive data from the widely used ServiceNow service management suite.

A newly discovered vulnerability in ServiceNow, dubbed "Count(er) Strike, allows low-privileged—and in some cases, unauthenticated—users to extract sensitive data from ServiceNow tables, even when they should have no access to that information. With thousands of organizations relying on ServiceNow for workflow automation and sensitive business processes, the potential impact is especially concerning.
A New Android vulnerability, TapTrap, bypasses Android protections using an ingenious invisible user interface.

A New Android vulnerability, TapTrap, bypasses Android protections using an ingenious invisible user interface.

A newly uncovered Android vulnerability, dubbed TapTrap, is raising concerns among cybersecurity experts for its ability to bypass Android’s permission system using a highly deceptive invisible user interface (UI) technique. This attack, developed by researchers at TU Wien and the University of Bayreuth, leverages UI animations to trick users into performing sensitive actions—such as granting permissions or even wiping their devices—without their knowledge.
U.S. sanctions North Korean member of the Andariel hacking group for his role in fraudulent IT worker scheme.

U.S. sanctions North Korean member of the Andariel hacking group for his role in fraudulent IT worker scheme.

The U.S. Department of the Treasury recently imposed sanctions on Song Kum Hyok, a North Korean cyber operative linked to the notorious Andariel hacking group. This action targets his central role in orchestrating a fraudulent IT worker scheme that generated illicit revenue for the North Korean regime, supporting its weapons of mass destruction (WMD) and ballistic missile programs.