Security News

BlackLock Ransomware Exposed After Researchers Exploit Leak Site Vulnerability
2025-03-29 03:52

In what's an instance of hacking the hackers, threat hunters have managed to infiltrate the online infrastructure associated with a ransomware group called BlackLock, uncovering crucial...

OpenAI now pays researchers $100,000 for critical vulnerabilities
2025-03-28 17:54

Artificial intelligence company OpenAI has announced a fivefold increase in the maximum bug bounty rewards for "exceptional and differentiated" critical security vulnerabilities from $20,000 to...

Researchers Uncover 46 Critical Flaws in Solar Power Systems From Sungrow, Growatt, and SMA
2025-03-28 13:21

Cybersecurity researchers have disclosed 46 new security flaws in products from three solar power system vendors, Sungrow, Growatt, and SMA, that could be exploited by a bad actor to seize control...

Researchers Uncover ~200 Unique C2 Domains Linked to Raspberry Robin Access Broker
2025-03-25 13:39

A new investigation has unearthed nearly 200 unique command-and-control (C2) domains associated with a malware called Raspberry Robin. "Raspberry Robin (also known as Roshtyak or Storm-0856) is a...

Microsoft wouldn't look at a bug report without a video. Researcher maliciously complied
2025-03-17 09:30

Maddening techno loop, Zoolander reference, and 14 minutes of time wasted A vulnerability analyst and prominent member of the infosec industry has blasted Microsoft for refusing to look at a bug...

Google paid $12 million in bug bounties last year to security researchers
2025-03-10 15:36

Google paid almost $12 million in bug bounty rewards to 660 security researchers who reported security bugs through the company's Vulnerability Reward Program (VRP) in 2024. [...]

Researchers Expose New Polymorphic Attack That Clones Browser Extensions to Steal Credentials
2025-03-10 14:47

Cybersecurity researchers have demonstrated a novel technique that allows a malicious web browser extension to impersonate any installed add-on. "The polymorphic extensions create a pixel perfect...

Researchers Link CACTUS Ransomware Tactics to Former Black Basta Affiliates
2025-03-04 16:21

Threat actors deploying the Black Basta and CACTUS ransomware families have been found to rely on the same BackConnect (BC) module for maintaining persistent control over infected hosts, a sign...

Twin Google flaws allowed researcher to get from YouTube ID to Gmail address in a few easy steps
2025-02-17 02:25

PLUS: DOGE web design disappoints; FBI stops crypto scams; Zacks attacked again; and more! Infosec In Brief A security researcher has found that Google could leak the email addresses of YouTube...

Researchers Find New Exploit Bypassing Patched NVIDIA Container Toolkit Vulnerability
2025-02-12 14:04

Cybersecurity researchers have discovered a bypass for a now-patched security vulnerability in the NVIDIA Container Toolkit that could be exploited to break out of a container's isolation...