Collaborate Disseminate
We unpack how some password managers can be tricked into coughing up your secrets, with a clickjacking sleight-of-hand, what website owners can do to prevent it, and how to lock down your personal password vault.
Then we time-hope to the post-quantu… Continue reading Smashing Security podcast #432: Oops! I auto-filled my password into a cookie banner
Cephalus is a relatively new ransomware operation that emerged in mid-2025, and has already been linked to a wave of high-profile data leaks.
Read more about it in my article on the Fortra blog. Continue reading Cephalus ransomware: What you need to know
In episode 65 of The AI Fix, a pigeon gives a PowerPoint presentation, Mark plays Graham a song about the Transformer architecture, a robot dog delivers parcels, some robots fall over at the World Humanoid Robot Games, and Graham takes credit for one o… Continue reading The AI Fix #65: Excel Copilot will wreck your data, and can AI fix social media?
A suspected hacker, believed to be the mastermind behind an organised campaign of attacks that stole millions of dollars worth of stocks from celebrities, including BTS singer Jung Kook, has been extradited to South Korea.
Read more in my article on… Continue reading Alleged mastermind behind K-Pop celebrity stock heist extradited to South Korea
A 26-year-old hacker, who breached websites in North America, Yemen, and Israel, and stole the details of millions of people has been sent to prison.
Continue reading Yemen Cyber Army hacker jailed after stealing millions of people’s data
Some cybersecurity news outlets were duped a few days ago by a claim that Europol was offering a $50,000 bounty for information about two members of the Qilin ransomware group.
Turns out it was all a hoax.
Read more details about what happened in… Continue reading Europol says Telegram post about 50,000 Qilin ransomware award is fake
Critical infrastructure organisations are once again being warned of the threat posed by malicious cybercriminals, following a ransomware attack against a state-owned energy company in Pakistan.
Read more in my article on the Exponential-e blog. Continue reading Blue Locker ransomware hits critical infrastructure – is your organisation ready?
In episode 431 of the “Smashing Security” podcast, a self-proclaimed crypto-influencer calling himself CP3O thought he had found a shortcut to riches — by racking up millions in unpaid cloud bills.
Meanwhile, we look at the growing threat of EDR-kil… Continue reading Smashing Security podcast #431: How to mine millions without paying the bill
The Warlock ransomware has hit a number of organisations including government agencies and departments, and most recently UK-based telecoms firm Colt.
Read more in my article on the Fortra blog. Continue reading Warlock ransomware: What you need to know
A hack of the Netherlands’ Public Prosecution Service has had an unusual side effect – causing some speed cameras to be no longer capturing evidence of motorists breaking the rules of the road.
Read more in my article on the Hot for Security blog. Continue reading Speed cameras knocked out after cyber attack