The people behind Storm-1175 are stepping up their attacks with quick campaigns that are meant to spread the Medusa ransomware This article explores.
The people behind Storm-1175 are stepping up their attacks with quick campaigns that are meant to spread the Medusa ransomware This article explores.
A global cybercrime group is going after public-facing Web apps by taking advantage of React2Shell flaws to steal passwords and other private information.
A global cybercrime group is going after public-facing Web apps by taking advantage of React2Shell flaws to steal passwords and other private information.
Most security teams can't keep up with how quickly AI is being used This article explores ai agents treated. . Max Imbiel says that companies can use the.
Most security teams can't keep up with how quickly AI is being used This article explores ai agents treated. . Max Imbiel says that companies can use the.
Cybercriminals are selling "VenomStealer" as a MaaS platform on forums and networks This article explores venom stealer using. . The software lets.
Cybercriminals are selling "VenomStealer" as a MaaS platform on forums and networks This article explores venom stealer using. . The software lets.
Companies must adapt to using AI in order to stay competitive, but this puts private data at risk by exposing it to new workflows and outside apps This.
Companies must adapt to using AI in order to stay competitive, but this puts private data at risk by exposing it to new workflows and outside apps This.
Deepen Desai from Zscaler talks about how the use of AI has grown a lot in the last year This article explores protect ai. . A lot of security teams.
Deepen Desai from Zscaler talks about how the use of AI has grown a lot in the last year This article explores protect ai. . A lot of security teams.
Axios is the most popular JavaScript HTTP client library, and it gets more than 400 million downloads a month on NPM This article explores attack axios.
Axios is the most popular JavaScript HTTP client library, and it gets more than 400 million downloads a month on NPM This article explores attack axios.
AI is becoming a tool for making decisions in businesses, and hackers are already using it This article explores organizations ask attack. . Brendan.
AI is becoming a tool for making decisions in businesses, and hackers are already using it This article explores organizations ask attack. . Brendan.
_Panther_Media_GmbH_Alamy.jpg%3Fwidth%3D1280%26auto%3Dwebp%26quality%3D80%26format%3Djpg%26disable%3Dupscale&w=3840&q=75)
Since last August, attackers have been pretending to be recruiters from Palo Alto Networks. People who have been affected are asked to pay between $400.
Since last August, attackers have been pretending to be recruiters from Palo Alto Networks. People who have been affected are asked to pay between $400.
Discover how AI agents are now a part of business workflows and can get to sensitive systems like code repositories and financial platforms. At the same.
Discover how AI agents are now a part of business workflows and can get to sensitive systems like code repositories and financial platforms. At the same.
Attackers have found yet another innovative way to conduct phishing attacks by abusing the customer support platform LiveChat, using real-time social.
Attackers have found yet another innovative way to conduct phishing attacks by abusing the customer support platform LiveChat, using real-time social.
Threat actors who speak Russian are targeting HR workflows with an attack campaign that uses steganographic image files to hide a malicious tool that can.
Threat actors who speak Russian are targeting HR workflows with an attack campaign that uses steganographic image files to hide a malicious tool that can.
For years, a Chinese-speaking threat actor has been using a combination of custom malware, open-source tools, and living-off-the-land binaries in Windows.
For years, a Chinese-speaking threat actor has been using a combination of custom malware, open-source tools, and living-off-the-land binaries in Windows.
In a campaign linked to North Korea's fictitious job-recruitment scams, attackers are targeting developers with malicious Next.js repositories to carry.
In a campaign linked to North Korea's fictitious job-recruitment scams, attackers are targeting developers with malicious Next.js repositories to carry.
_roibu_Alamy.jpg%3Fwidth%3D1280%26auto%3Dwebp%26quality%3D80%26format%3Djpg%26disable%3Dupscale&w=3840&q=75)
With a new attack campaign delivering multiple new strains of custom malware, the nation-state threat group MuddyWater is not wasting any time in stepping.
With a new attack campaign delivering multiple new strains of custom malware, the nation-state threat group MuddyWater is not wasting any time in stepping.
Someone wasn't keeping up with OpenClaw's rapid spread This article explores openclaw installations attack. . This week, cybersecurity vendors observed a.
Someone wasn't keeping up with OpenClaw's rapid spread This article explores openclaw installations attack. . This week, cybersecurity vendors observed a.
Researchers have discovered new malware that infects every app on compromised systems and gives attackers virtually unfettered remote access to them This.
Researchers have discovered new malware that infects every app on compromised systems and gives attackers virtually unfettered remote access to them This.
Despite its failure, the late-last-year attack on Poland's energy sector was the first significant assault on decentralized energy resources (DERs), such.
Despite its failure, the late-last-year attack on Poland's energy sector was the first significant assault on decentralized energy resources (DERs), such.
By employing a new command to get around security and force users to infect their own devices with malware, in this case a remote access Trojan (RAT) for.
By employing a new command to get around security and force users to infect their own devices with malware, in this case a remote access Trojan (RAT) for.
_Thomas_Bethge_Alamy.jpg%3Fwidth%3D1280%26auto%3Dwebp%26quality%3D80%26format%3Djpg%26disable%3Dupscale&w=3840&q=75)
Discover how Fortune 500 companies have been the target of a widespread phishing campaign by an elusive, profit-driven threat actor known as GS7, which.
Discover how Fortune 500 companies have been the target of a widespread phishing campaign by an elusive, profit-driven threat actor known as GS7, which.
Another sobering reminder of the success hackers have been having with edge devices in general, a new round of serious flaws in an Ivanti product has.
Another sobering reminder of the success hackers have been having with edge devices in general, a new round of serious flaws in an Ivanti product has.
%2520(1).webp&w=3840&q=75)
A critical security feature bypass vulnerability affecting Office applications has been revealed by Microsoft, and there is proof that it is being
A critical security feature bypass vulnerability affecting Office applications has been revealed by Microsoft, and there is proof that it is being
Kaspersky: a tool related to espionage was distributed as a result of a zero-day exploit of a Google Chrome vulnerability. CVE-2025-2783 (CVSS score:
Kaspersky: a tool related to espionage was distributed as a result of a zero-day exploit of a Google Chrome vulnerability. CVE-2025-2783 (CVSS score:
A threat actor with ties to China has been attributed to a five-month-long intrusion targeting a Russian IT service provider. The hacking group's expansion to the country beyond Southeast Asi
A threat actor with ties to China has been attributed to a five-month-long intrusion targeting a Russian IT service provider. The hacking group's expansion to the country beyond Southeast Asi
According to Symantec, three Chinese threat groups have turned a zero-day vulnerability into a weapon. Attackers have targeted government agencies in the United States, South America, and an
According to Symantec, three Chinese threat groups have turned a zero-day vulnerability into a weapon. Attackers have targeted government agencies in the United States, South America, and an
Search engine optimization (SEO) fraud has been linked to the Chinese-speaking cybercrime group UAT-8099. Microsoft Internet Information Services (IIS) servers are the intended target of the
Search engine optimization (SEO) fraud has been linked to the Chinese-speaking cybercrime group UAT-8099. Microsoft Internet Information Services (IIS) servers are the intended target of the
Tick, a suspected Chinese cyberespionage actor, is also referred to as Bronze Butler, Daserf, REDBALDKNIGHT, Stalker Panda, and Stalker Taurus. It is well-known for its widespread targeting o
Tick, a suspected Chinese cyberespionage actor, is also referred to as Bronze Butler, Daserf, REDBALDKNIGHT, Stalker Panda, and Stalker Taurus. It is well-known for its widespread targeting o
A new series of attacks that take advantage of an unpatched Windows shortcut vulnerability have been connected to a threat actor with ties to China. Between September and October of 2025, Eur
A new series of attacks that take advantage of an unpatched Windows shortcut vulnerability have been connected to a threat actor with ties to China. Between September and October of 2025, Eur
A bulletin about persistent cyberattacks targeting unpatched Cisco IOS XE devices in the nation was released by the Australian Signals Directorate (ASD). According to the intelligence agency,
A bulletin about persistent cyberattacks targeting unpatched Cisco IOS XE devices in the nation was released by the Australian Signals Directorate (ASD). According to the intelligence agency,
ClickFix attacks require the user to resolve a challenge or issue within the browser. By copying malicious code from the page clipboard and executing it locally, they deceive users into execu
ClickFix attacks require the user to resolve a challenge or issue within the browser. By copying malicious code from the page clipboard and executing it locally, they deceive users into execu
Page 1 of 2
