The senior information security executive at JPMorgan Chase is urging the software industry to prioritize secure development practices over speed to market, warning that increasing supply-chain disruptions are weakening the global economic system. Patrick Opet, global CISO at JPMorgan Chase, warned in an open letter on Friday that global companies are dependent on interconnected technologies and warned […]

It’s now been more than a week of chaos for Marks and Spencer (M&S), one of the UK’s biggest brands, following what – it is now obvious – is a significant cyber attack. It has cost it millions of pounds in lost sales and a lower share price. M&S has not said what or who […]

COMMENTARY: Over the past year, cyber operations by foreign adversaries, including the People’s Republic of China (PRC), have moved away from traditional espionage and data theft to developing strategic plans that could infiltrate and cripple critical U.S. infrastructure. Moreover, the strategic exploitation of vulnerabilities by foreign adversaries at critical U.S. infrastructure locations could be remotely […]

Retail giant Marks & Spencer has confirmed a cybersecurity incident, as customers report ongoing disruption and outages. The British-headquartered retailer on Tuesday told customers in a notice, which TechCrunch has seen, that the company has been “managing a cyber incident” over the last few days. The notice, signed by chief executive Stuart Machin, said it […]

Artificial Intelligence (AI) is transforming the cybersecurity landscape, offering both powerful tools for defense and new avenues for attack. As organizations increasingly adopt AI-driven solutions to detect threats, automate responses, and analyze vast amounts of data, governments and regulatory bodies are racing to create frameworks that ensure the responsible use of these technologies. AI regulations […]

WASHINGTON, April 15 (Reuters) – A whistleblower complaint says that billionaire Elon Musk’s team of technologists may have been responsible for a “significant cybersecurity breach,” likely of sensitive case files, at America’s federal labor watchdog. The complaint, opens new tab, addressed to Republican Senate Intelligence Committee Chairman Tom Cotton and his Democratic counterpart Mark Warner […]

A China-linked advanced persistent threat (APT) group has exploited critical vulnerabilities in Ivanti Connect Secure VPN appliances to infiltrate organizations across 12 countries and 20 industries, cybersecurity firm TeamT5 revealed in a report shared with Cyber Security News. The campaign, active since late March 2025, leverages the CVE-2025-0282 and CVE-2025-22457 vulnerabilities both stack-based buffer overflow flaws with maximum CVSS […]

Small businesses across the UK are losing £3.4 billion a year thanks to inadequate cybersecurity measures, according to new research. Cyber attacks against SMBs have surged in recent years, analysis from Vodafone Business shows, with more than a third experiencing a cyber incident last year alone. Meanwhile, 28% had between one and five attempted attacks, and 6% […]

Microsoft has released security fixes to address a massive set of 126 flaws affecting its software products, including one vulnerability that it said has been actively exploited in the wild. Of the 126 vulnerabilities, 11 are rated Critical, 112 are rated Important, and two are rated Low in severity. Forty-nine of these vulnerabilities are classified as privilege […]

April 2 (Reuters) – Oracle (ORCL.N), opens new tab has told customers that a hacker broke into a computer system and stole old client log-in credential, Bloomberg News reported on Wednesday, citing two people familiar with the matter. Last month, an unidentified person began attempting to sell data online that was stolen from the cloud servers of […]