Malware & Threats
In 2023, Google said it blocked 2.28 million bad applications from being published on Google Play and banned 333,000 developer accounts.
Hi, what are you looking for?
SecurityWeek
Malware & Threats
Researchers identify a previously unknown ClickFix variant exploiting PowerShell and clipboard hijacking to deliver the Lumma infostealer via a compromised travel site.
Malware & Threats
A critical Langflow vulnerability tracked as CVE-2025-3248 has been exploited to ensnare devices in the Flodrix botnet.
Malware & Threats
Threat actors have abused the TeamFiltration pentesting framework to target over 80,000 Entra ID user accounts.
Malware & Threats
CISA warns that vulnerable SimpleHelp RMM instances have been exploited against a utility billing software provider’s customers.
Data Breaches
US healthcare giant is warning millions of current and former patients that their personal information was exposed to third-party advertisers.
Malware & Threats
A new Android trojan named Brokewell can steal user’s sensitive information and allows attackers to take over devices.
Malware & Threats
More than 1,400 CrushFTP servers remain vulnerable to an actively exploited zero-day for which PoC has been published.
Malware & Threats
More than 90,000 unique IPs are still infected with a PlugX worm variant that spreads via infected flash drives.
Malware & Threats
A North Korea-linked threat actor hijacked the update mechanism of eScan antivirus to deploy backdoors and cryptocurrency miners.
Malware & Threats
A threat actor tracked as CoralRaider has been using multiple infostealers to harvest credentials from users worldwide.
Malware & Threats
Russia-linked APT28 deploys the GooseEgg post-exploitation tool against numerous US and European organizations.
Malware & Threats
Shadowserver has identified roughly 6,000 internet-accessible Palo Alto Networks firewalls potentially vulnerable to CVE-2024-3400.
Funding/M&A
VulnCheck banks $8 million in early stage capital to build 'exploit intelligence' technologies and services.
Malware & Threats
Noteworthy stories that might have slipped under the radar: OpenSSF and OpenJS incidents similar to XZ backdoor, Moldovan botnet operator charged, US automotive company...
Malware & Threats
Microsoft warns that several OpenMetadata vulnerabilities are being exploited to deploy cryptomining malware to Kubernetes environments.
Malware & Threats
Kapeka is a new backdoor that may be a new addition to Russia-link Sandworm’s malware arsenal and possibly a successor to GreyEnergy.
Malware & Threats
Cisco has observed an increase in brute-force attacks targeting web application authentication, VPNs, and SSH services.
Malware & Threats
Palo Alto Networks firewall vulnerability CVE-2024-3400 increasingly exploited after PoC code has been released.
Malware & Threats
Palo Alto Networks has started releasing hotfixes for the firewall zero-day CVE-2024-3400, which some have linked to North Korea’s Lazarus.
Malware & Threats
A state-sponsored threat actor has been exploiting a zero-day in Palo Alto Networks firewalls for the past two weeks.
Malware & Threats
Checkmarx warns of a new attack relying on GitHub search manipulation to deliver malicious code.
Government
CISA's Malware Next-Gen system is now available for any organization to submit malware samples and other suspicious artifacts for analysis.
Malware & Threats
Microsoft patches CVE-2024-29988 and CVE-2024-26234, two zero-day vulnerabilities exploited by threat actors to deliver malware.
Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.
RegisterLearn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.
RegisterExpert Insights
A strong AI deployment starts with asking the right questions, mapping your risks, and thinking like an adversary — before it’s too late.
(Matt Honea)
It’s time for enterprises to stop treating unmanaged devices as an edge case and start securing them as part of a unified Zero Trust strategy.
(Etay Maor)
Many security professionals feel pressured to pursue leadership roles, but success can also mean going deeper, not just higher.
(Joshua Goldfarb)
AI is transforming the cybersecurity landscape—empowering attackers with powerful new tools while offering defenders a chance to fight back. But without stronger awareness and strategy, organizations risk falling behind.
(Trevin Edgeworth)
Agentic AI can be a great tool for many of the ‘gray area’ tasks that SOC analysts undertake.
(Marc Solomon)