The US Treasury Department’s sanctioned a Russian national and a Chinese company roles in North Korean fraudulent IT worker ...

Credit reporting firm TransUnion said more than 4.4 million had their personal informationcompromised in a data breach.

Nevada confirmed that the days-long disruption in to State systems and services in August 2025 was caused by a ransomware attack.

SecurityWeek’s cybersecurity news roundup for August 29, 2025: Compilation of noteworthy stories that might have slipped under the radar.

Microsoft says Storm-0501 is exploiting Entra ID and Azure to escalate privileges, implant backdoors, exfiltrate and destroy data, and extort victims.

The FBI estimates that VerifTools generated approximately $6.4 million in illicit proceeds for the cybercriminals selling the fake documents. The Dutch police, which seized the marketplace’s entire ...

The widespread data theft campaign that struck hundreds of Salesforce customers through Salesloft Drift also impacted Google Workspace accounts.

Once simple keyloggers, infostealers have evolved into sophisticated malware-as-a-service tools that fuel data breaches and ...

Attackers used stolen OAuth tokens from Drift to siphon data from Salesforce customers; Google urges credential rotation and ...

Phishing campaigns using ConnectWise ScreenConnect highlight the growing danger of AI-driven social engineering.

Citrix warned of attacks exploiting a zero-day vulnerability (CVE-2025-7775) in NetScaler ADC and Gateway appliances leading ...

Nevada is scrambling to restore systems that were disrupted by a cyberattack that forced it to close state offices.