#cybersecurity

CareCloud disclosed that hackers accessed one of its patient-record repositories for more than eight hours in March, underscoring the continued vulnerability of health data infrastructure.

The Federal Communications Commission has halted all new equipment authorizations for routers not manufactured in the United States, a sweeping national security measure that leaves existing approved devices in legal limbo — and raises hard questions about who will fill the supply gap.

The FCC has ruled that virtually all consumer wireless routers sold in the US must be domestically manufactured, effectively banning popular foreign brands from retail shelves. Existing devices remain legal to use, but the supply chain shock will reshape home networking.

The US Space Force has established dedicated cyber defense squadrons at Cape Canaveral and Vandenberg to protect launch operations from malicious hacking, as adversaries increasingly target the digital infrastructure supporting US space missions.

A cyberattack on Des Moines-based Intoxalock left thousands of drivers who rely on breath-test ignition locks unable to start their vehicles across the country, exposing the fragility of cloud-connected compliance hardware.

Shardul Shah of Index Ventures breaks down Google's record $32 billion acquisition of cybersecurity firm Wiz and what it reveals about the future of cloud security competition.

Security flaws found in consumer robots — including hardcoded keys in the Unitree G1 humanoid — expose a fundamental vulnerability in physical AI that could prove far more dangerous in industrial settings.

Security researchers discover 151 malicious packages using invisible Unicode characters to hide payloads from code review tools and terminal displays.

A peer-to-peer botnet dubbed KadNap has infected 14,000 routers, mostly Asus devices in the US, using a Kademlia-based design that resists shutdowns.

A Department of Government Efficiency staffer reportedly copied sensitive Social Security records to a personal USB drive, raising alarm over data security practices.

Google traced an iPhone-hacking toolkit used by Russian espionage to a U.S. defense contractor, raising proliferation concerns.

Anthropic's Claude AI has uncovered more than 100 previously unknown security vulnerabilities in Firefox's codebase, demonstrating AI's growing capability as an automated security auditing tool.

A security researcher who stumbled into controlling 7,000 DJI Romo robot vacuums via a PlayStation gamepad has been awarded a $30,000 bug bounty. The discovery exposed a critical vulnerability allowing remote camera access.

A wave of sophisticated vehicle thefts is targeting luxury cars worth hundreds of thousands of dollars. Investigators are uncovering how high-tech tools and organized networks are enabling criminals to steal and export exotic vehicles with alarming efficiency.

Microsoft warns that key Secure Boot certificates expire in June 2026, potentially leaving millions of PCs unable to boot. Here is what you need to know.