Search

bleepingcomputer.com › news › security

ServiceNow discloses security incident exposing customer data

…The security update released on Friday was allegedly used to set requires_authentication to true . Numerous admins shared indicators of compromise, including API requests from the IP address ' 51.159.98.241…

Jun 9, 2026 · Lawrence Abrams

Top stories

bleepingcomputer.com

Over 400 Arch Linux packages compromised to push rootkit, infostealer

1d ago

bleepingcomputer.com

New Apple feature automatically changes your compromised passwords

5d ago

bleepingcomputer.com

Hola Browser for Windows compromised to deliver cryptominer

1w ago

bleepingcomputer.com

Red Hat npm packages compromised to steal developer credentials

1w ago

bleepingcomputer.com › news › security

Maine breach portal abused to publish fake data breach disclosures

…We have no reason to believe that our data or systems have been compromised." Tupper added that the company is "in the process of contacting the Maine Attorney General's office to…

Jun 11, 2026 · Bill Toulas

bleepingcomputer.com › news › security

Inside a Crypto Drainer: How to Spot it Before it Empties Your Wallet

…Unlike traditional malware operations, crypto drainers typically rely on social engineering rather than device compromise. Victims are lured to fake crypto, NFT, airdrop, or DeFi websites and asked to connect their wallets…

May 21, 2026

bleepingcomputer.com › news › security

Check Point links VPN zero-day attacks to Qilin ransomware gang

…One case involved confirmed post-compromise activity associated with Qilin ransomware affiliate. Customers using IKEv1 key exchange protocol are strongly encouraged to apply the available security updates immediately." Check Point also shared…

Jun 8, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

CISA flags two-year-old Oracle flaw as actively exploited in attacks

…vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server," Oracle said when it released security patches for CVE-2024-21182 in July 2024 . "Successful attacks of…

Jun 2, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

DentaQuest data breach exposed info of 2.6 million accounts

…The security incident came to light last month, when the infamous extortion group ShinyHunters listed the company on its data leak site and claimed to have stolen more than 234 GB of…

Jun 4, 2026 · Bill Toulas

bleepingcomputer.com › news › security

Spain arrests doxer leaking sensitive data of govt employees

…According to authorities, the individual is responsible for a massive leak of personal data, which carried national security risks because of the people exposed. The police notes that the published data was…

Jun 1, 2026 · Bill Toulas

bleepingcomputer.com › news › security

Instructure confirms hackers used Canvas flaw to deface portals

Instructure confirms hackers used Canvas flaw to deface portals By Ionut Ilascu May 11, 2026 11:26 AM Education technology giant Instructure has confirmed that a security vulnerability allowed hackers to modify…

May 11, 2026 · Ionut Ilascu

bleepingcomputer.com › news › security

Windows 11 and Microsoft Edge hacked at Pwn2Own Berlin 2026

…all entries must compromise the target and demonstrate arbitrary code execution. After the zero-day flaws are disclosed during the Pwn2Own competition, vendors have 90 days to release security fixes for their…

May 14, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

Oracle mitigates PeopleSoft zero-day exploited in data theft attacks

…The flaw is within Oracle PeopleSoft PeopleTools and has a CVSS base score of 9.8. "This Security Alert addresses vulnerability CVE-2026-35273 in Oracle PeopleSoft PeopleTools. Oracle PeopleSoft Enterprise Applications…

Jun 11, 2026 · Lawrence Abrams