Windscribe is rolling out a new protocol to help users in Iran and Russia bypass VPN blocks. But the bigger threat is a shift to government “whitelisting” that could make VPNs nearly impossible to use.
Marquis, a Texas-based fintech firm, says a hack at SonicWall led directly to its own data breach. The company is now considering legal action to recoup costs from the cybersecurity provider.
New data shows ransomware groups are resorting to threats of physical violence and repeated extortion. With 69% of breached organizations paying up, building true cyber resilience is the only way out.
Despite fewer active ransomware groups, the number of victim organizations posted to leak sites surged in late 2025. The threat is consolidating around a few highly efficient operators like Qilin and Akira, who are focusing on speed and evasion.
Google has announced that Chrome 150 will be the last version supporting macOS 12 Monterey. Support ends on July 28, 2026, leaving millions of users on older Macs vulnerable without security updates. Apple is already telling users to ditch Chrome for Safari.
According to ZDNet’s threat intelligence report, 2026 will see AI weaponization become the norm, not the exception. Malware will dynamically adapt to evade detection, and autonomous AI agents will execute attacks with minimal human intervention, posing a severe challenge to defenders.
Cisco has patched a medium-severity bug in its Identity Services Engine that allows authenticated admins to read arbitrary files. A public proof-of-concept exploit now exists, raising the risk of in-the-wild attacks. This follows a pattern of serious ISE flaws being exploited.
A year-long series from CRN highlights five critical leadership lessons from women in cybersecurity. The core message? Strong security is built on people-first leadership, not just technical control.
The public has until January 21 to comment on a massive R76-billion revenue adjustment for Eskom, which could force electricity tariffs up by about 10.5% this year. The move follows legal challenges over a lack of transparency in previous decisions.
Microsoft is putting its foot down on admin security. Starting February 9, 2026, any administrator without multi-factor authentication enabled will be locked out of key Microsoft 365 admin portals. This follows a similar move for the Azure Portal.
