Hackers exploited a security flaw in common Microsoft Corp. software to breach governments, businesses and other organizations across the globe and steal sensitive information, according to officials and cybersecurity researchers.

One password is believed to have been all it took for a ransomware gang to destroy a 158-year-old company and put 700 people out of work. KNP - a Northamptonshire transport company - is just one of tens of thousands of UK businesses that have been hit by such attacks.

The Chinese state-sponsored hacking group known as Salt Typhoon has already shocked the US once with the revelation last year that it had deeply penetrated American telecom systems, even targeting the text messages and phone conversations of citizens including then-candidates Donald Trump and JD Vance in real time.

Microsoft Corp. advirtió que piratas informáticos están atacando activamente a los clientes de su software de gestión de documentos SharePoint, y los investigadores de seguridad han señalado el riesgo de que se produzcan violaciones de seguridad a gran escala en todo el mundo.

Security software company Expel says it detected a new type of adversary-in-the-middle (AitM) attack that takes advantage of the "cross-device sign-in” feature.

Newly published research shows that the domain name system—a fundamental part of the web—can be exploited to hide malicious code and prompt injection attacks against chatbots.

A cyberattack suspected to be by Iranian hackers swapped candidate photos with that of Ayatollah Khomeini on the secretary of state's website.

Hackers bypass FIDO keys using spoofed portals and QR codes, exposing MFA weaknesses and risking user accounts.