The biggest cybersecurity and cyberattack stories of 2025

Some stories, though, were more impactful or popular with our readers than others. This article explores 15 of the biggest ...
The Hacker News

Traditional Security Frameworks Leave Organizations Exposed to AI-Specific Attack Vectors

AI-driven attacks leaked 23.77 million secrets in 2024, revealing that NIST, ISO, and CIS frameworks lack coverage for ...
MediaNama

Explained: How Prompt Injections Put AI Browsers Like ChatGPT Atlas At Risk

Read how prompt injection attacks can put AI-powered browsers like ChatGPT Atlas at risk. And what OpenAI says about combatting them.
ET CIO

Top 7 WAF Tools for CIOs in 2025

Explore the top 7 Web Application Firewall (WAF) tools that CIOs should consider in 2025 to protect their organizations from online threats and ensure compliance with emerging regulations.
Modern Engineering Marvels on MSN

Firefox’s AI shift sparks outcry: “Out of touch with users”

The privacy-minded corner of the internet is awash in the shock waves generated by the latest Mozilla press release: Firefox, the long-time refuge for those who demand control and a tracker’s least ...
The Hacker News

FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE

Multiple security vulnerabilities have been disclosed in the open-source private branch exchange (PBX) platform FreePBX, including a critical flaw that could result in an authentication bypass under ...
IEEE

An Extended False Data Injection Attack via Deep Reinforcement Learning: Attack Model and Countermeasures in Cyber-Physical Power Systems

Abstract: False data injection attacks are commonly used to evade the bad data detector in cyber-physical power systems. This paper proposes an extended attack strategy and a deep reinforcement ...