Dozens of email accounts at the U.S. Treasury Department were compromised by hackers in the recent cyber-espionage campaign, the office of U.S. Senator Ron Wyden said on Monday.

According to researchers at Armis, around 97 percent of the OT devices affected by URGENT/11 (a group of vulnerabilities) are not patched, even though fixes are being delivered.

Palo Alto’s Unit42 research team has recently found hacking group AridViper (aka APT-C-23) dropping a new malware called PyMicropsia to target victims in the Middle Eastern region.

The threat actors were successful in gaining access to Subway UK customers’ names and email addresses by hacking a Subcard server responsible for its email campaigns.

In recent months, there has been a barrage of zero-day vulnerabilities affecting popular software and devices, including several WordPress plugins, VMware products, Google Chrome, and others.

Security researchers have discovered a second threat actor that has exploited the SolarWinds software to plant Supernova and CosmicGale malware on corporate and government networks.

Expanding on its predecessor, this new version of Gitpaste-12 comes equipped with over 30 vulnerability exploits, concerning Linux systems, IoT devices, and open-source components.

Branches of Co-op in the south of England have been using real-time facial recognition cameras to scan shoppers entering stores. It was quietly introduced for limited trials during the last 18 months.

Sen. Mitt Romney (R-Utah) called for a response to a cyberattack on U.S. government systems on Sunday, and said that Russia should face consequences for its alleged involvement.

Citizen Lab researchers say they have found evidence that dozens of journalists had their iPhones silently compromised with spyware known to be used by nation-states. The spyware was silently delivered, likely over iMessage.