The Qualys Threat Research Unit has identified a Local Privilege Escalation (LPE) vulnerability affecting default installations of Ubuntu Desktop version 24.04 and later. This flaw (CVE-2026-3888) allows an unprivileged local attacker to escalate privileges to full root access through the interaction of two standard system components: snap-confine and systemd-tmpfiles. While the exploit requires a specific...Read More
Nationally, about 6,000 of the 3.5 million public school teachers face adverse actions against their licenses every year, according to the National Association of State Directors of Teacher Education and Certification (NASDTEC). Those actions can range from breaking school policy and not paying child support to making an inappropriate comment. Bella Hoffman was 16 years...Read More
(InvestigateTV) — Reports of suspected child sex trafficking to a national tipline have increased nearly 1,000 percent following implementation of a federal law requiring online platforms to report suspected crimes, according to lawmakers and child safety advocates. The bipartisan REPORT Act requires certain online platforms to report suspected child sex trafficking and online enticement to...Read More
For over a decade, ransomware has remained one of the more pernicious cybersecurity problems that CISOs and their security teams face. Over the years, these cyber threats have damaged organizations’ infrastructure and networks, led to personal data leaks and allowed cybercriminals to pocket millions in ransom from victims. Ransomware attacks have also forced CISOs and...Read More
An Iran-linked group said it hacked a US medical company, causing “global disruption” to its systems, in retaliation for the bombing of the Minab school in Iran, in an attack seen as widening the Middle East into the cyber realm. Handala, a hacker group, claimed responsibility for the attack on Wednesday on the Stryker Corporation,...Read More
The Rhysida ransomware gang claimed responsibility for a late-August data breach at the Maryland Transit Administration. Exposed data includes names, surnames, dates of birth, driver’s licenses, SSNs, passports, and confidential information. The group is said to have demanded a ransom of 30 bitcoin, around US$3.4 million at the time of writing, to be paid within...Read More
Comparitech disclosed that in the first nine months of 2025, 293 ransomware attacks were recorded on hospitals, clinics, and other direct care providers. An additional 130 attacks targeted businesses within the healthcare sector, including pharmaceutical manufacturers, medical billing providers, and healthcare tech companies. Attacks on healthcare providers mirrored the figures from 2024 during the same...Read More
Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. Dive Brief: The volume of ransomware attacks on telecommunications companies around the world increased fourfold from 2022 to 2025, according to a report that the threat intelligence firm Cyble published this week. Cyble also identified 444 incidents...Read More
Handala hackers hit Stryker via compromised Intune admin Tens of thousands of devices wiped, but no data theft confirmed Medical products remain safe; order systems offline and manual only When cybercriminals struck Stryker last week and wiped tens of thousands of electronic devices, they did so without using any malware. Instead, they used Intune, Microsoft’s...Read More
A prominent ransomware gang has taken credit for a devastating attack on the biggest hospital in Mississippi and a large county in New Jersey. The Medusa ransomware operation, which experts believe is run out of Russia, said recently it was behind the cyberattack on the University of Mississippi Medical Center (UMMC). UMMC is one of...Read More
