We need secure products as much as we need security products
Buyers need to demand better.
Similar Posts
‘Why should we pay these criminals?’: the hidden world of ransomware negotiations
Bys sAnna Isaac reports: They call it “stopping the bleeding”: the vital window to prevent an entire database from being ransacked by criminals or a production line grinding to a halt. When a call comes into the cybersecurity firm S-RM, headquartered on Whitechapel High Street in east London, a hacked business or institution may have just……
⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [10 February]
Bys sIn cybersecurity, the smallest crack can lead to the biggest breaches. A leaked encryption key, an unpatched software bug, or an abandoned cloud storage bucket—each one seems minor until it becomes the entry point for an attack. This week, we’ve seen cybercriminals turn overlooked weaknesses into major security threats, proving once again that no system…
Cyberattack disables Onsolve Code Red emergency alert system across St. Louis region
Bys sRussell Kinsaul reports a serious situation in St. Louis, Missouri: A cyberattack has caused a nationwide outage of the Code Red emergency notification system, leaving cities and counties across the St. Louis region unable to use the popular system to send tornado warnings and other emergency alerts directly to residents’ phones. Code Red has been……
Hackers Claim To Have Compromised Data Broker Used By U.S. Government To Dodge Warrants
Bys sOver on TechDirt, Karl Bode writes: Gravy Analytics, the parent company of Venntel, is like many dodgy data brokers. The company gleans vast troves of sensitive U.S. behavior and location cellphone data, then generally sells access to that data to a long line of folks. Including the U.S. government, which has increasingly turned to buying…
STAC6565 Targets Canada in 80% of Attacks as Gold Blade Deploys QWCrypt Ransomware
Bys sCanadian organizations have emerged as the focus of a targeted cyber campaign orchestrated by a threat activity cluster known as STAC6565. Cybersecurity company Sophos said it investigated almost 40 intrusions linked to the threat actor between February 2024 and August 2025. The campaign is assessed with high confidence to share overlaps with a hacking group…
Citrix Patches Three NetScaler Flaws, Confirms Active Exploitation of CVE-2025-7775
Bys sCitrix has released fixes to address three security flaws in NetScaler ADC and NetScaler Gateway, including one that it said has been actively exploited in the wild. The vulnerabilities in question are listed below – CVE-2025-7775 (CVSS score: 9.2) – Memory overflow vulnerability leading to Remote Code Execution and/or Denial-of-Service CVE-2025-7776 (CVSS score: 8.8) –…