Audio streaming platform SoundCloud has confirmed a significant security breach affecting an estimated 20 percent of its global user base. The company disclosed that hackers gained access to limited account information, including email addresses, through an internal service dashboard. The announcement comes after weeks of service disruptions that left many users unable to connect, particularly those relying on VPNs in restricted regions.

The Cybersecurity and Infrastructure Security Agency (CISA) has unveiled version 2.0 of its Cross-Sector Cybersecurity Performance Goals (CPGs), a refreshed framework designed to help organizations embed cybersecurity into daily operations and counter evolving digital threats.

Cybersecurity experts have uncovered four new phishing kits—BlackForce, GhostFrame, InboxPrime AI, and Spiderman—capable of large-scale credential theft and bypassing security defenses.

Financial services firms are being urged to urgently review their IT systems and processes after new independent guidance on managing customer vulnerability was formally adopted by the Financial Ombudsman Service (FOS).

Microsoft closed out 2025 by releasing patches for 56 security vulnerabilities across its Windows platform, including one flaw already being exploited in the wild. Of the total, three were rated Critical and 53 Important, with two publicly known at the time of disclosure.

Commonwealth Bank of Australia (CommBank) today announced a national technology skills initiative to help Australia’s small businesses build AI, cybersecurity and digital capabilities to lift productivity and drive growth.

Federal cybersecurity officials have issued a warning about a stealthy backdoor known as Brickstorm, which Chinese state-sponsored hackers are deploying across critical infrastructure environments in the United States and Canada.