Malware & Threats
Russian military intelligence hackers intensify targeting of Western logistics and technology companies moving supplies into Ukraine.
Hi, what are you looking for?
CISA warns companies of a widespread campaign targeting a Commvault vulnerability to hack Azure environments.
Russian military intelligence hackers intensify targeting of Western logistics and technology companies moving supplies into Ukraine.
Redmond’s threat hunters found 394,000 Windows systems talking to Lumma controllers, a victim pool that included global manufacturers.
Procolored’s public website served dozens of software downloads containing information stealer malware and a backdoor.
Two ransomware groups and several Chinese APTs have been exploiting two recent SAP NetWeaver vulnerabilities.
Google bundles multiple safeguards under a single Android toggle to protect high-risk users from advanced mobile malware implants.
Patch Tuesday: Microsoft patches at least 70 security bugs and flagged five zero-days in the “exploitation detected” category.
Supply chain attack compromises the popular rand-user-agent NPM package to deploy and activate a backdoor.
Three NPM packages posing as developer tools for Cursor AI code editor’s macOS version contain a backdoor.
Russia-linked APT Star Blizzard is using the ClickFix technique in recent attacks distributing the LostKeys malware.
Meta has won its WhatsApp hacking lawsuit against Israeli spyware company NSO Group in an “important step forward for privacy and security”.
Noteworthy stories that might have slipped under the radar: NullPoint Stealer source code leaked, researcher earns $17,500 from Apple for vulnerability, BreachForums down after...
ESET has analyzed Spellbinder, the IPv6 SLAAC spoofing tool Chinese APT TheWizards uses to deploy its WizardNet backdoor.
The latest Verizon DBIR landed this week with a startling statistic about the security posture of VPNs and network edge devices.
Security researchers detail various malware campaigns that use bulletproof services linked to Proton66 ASN.
North Korean cryptocurrency thieves abusing Zoom Remote collaboration feature to target cryptocurrency traders with malware.
Windows versions of the BrickStorm backdoor that the Chinese APT used in the MITRE hack last year have been active for years.