Malware & Threats
CISA has published its analysis of Resurge, a SpawnChimera malware variant used in attacks targeting a recent Ivanti Connect Secure zero-day.
Hi, what are you looking for?
SecurityWeek
Malware & Threats
Threat actors have abused the TeamFiltration pentesting framework to target over 80,000 Entra ID user accounts.
Malware & Threats
CISA warns that vulnerable SimpleHelp RMM instances have been exploited against a utility billing software provider’s customers.
Government
Citizen Lab publishes forensic proof that spyware maker Paragon can compromise up-to-date iPhones. Journalists in Europe among victims.
Malware & Threats
Investigators leveraged a vulnerability dubbed DanaBleed to obtain insights into the internal operations of the DanaBot botnet.
Malware & Threats
Nearly a dozen crypto packages on NPM, including one published 9 years ago, have been hijacked to deliver infostealers.
Malware & Threats
The Grandoreiro banking trojan has reemerged in new campaigns targeting users in Latin America and Europe.
Malware & Threats
Exploitation of Windows MMC zero-day is being pinned on a ransomware gang known as EncryptHub (an affiliate of RansomHub)
Malware & Threats
AMTSO has developed a Sandbox Evaluation Framework to standardize the testing of malware analysis solutions.
Malware & Threats
macOS users are targeted with multiple versions of the ReaderUpdate malware written in Crystal, Nim, Rust, and Go programming languages.
Malware & Threats
Weaver Ant, a cyberespionage-focused APT operating out of China, is targeting telecom providers for persistent access.
Malware & Threats
The Medusa ransomware relies on a malicious Windows driver to disable the security tools running on the infected systems.
Malware & Threats
Over 300 malicious applications displaying intrusive full-screen interstitial video ads amassed more than 60 million downloads on Google Play.
Malware & Threats
Chinese hacking group MirrorFace has targeted a Central European diplomatic institute with the Anel backdoor and AsyncRAT.
Malware & Threats
Microsoft has shared details on StilachiRAT, an evasive and persistent piece of malware that facilitates sensitive data theft.
Malware & Threats
ZDI has uncovered 1,000 malicious .lnk files used by state-sponsored and cybercrime threat actors to execute malicious commands.
Malware & Threats
Exploits swirling for remote code execution vulnerability (CVE-2025-24813) in open-source Apache Tomcat web server.
Malware & Threats
The websites of over 100 auto dealerships were found serving malicious ClickFix code in a supply chain compromise.
Malware & Threats
Noteworthy stories that might have slipped under the radar: Switzerland requires disclosure of critical infrastructure attacks, ESP32 chips don’t contain a backdoor, MassJacker cryptojacking...
Malware & Threats
The ClickFix technique has been employed by cybercrime and APT groups for information stealer and other malware deployment.
Malware & Threats
A recently disclosed Edimax zero-day vulnerability has been exploited in the wild by Mirai botnets for nearly a year.
Malware & Threats
Meta’s Facebook security team warns of live exploitation of a zero-day vulnerability in the open-source FreeType library.
Malware & Threats
Threat actors are likely targeting Grafana path traversal bugs for reconnaissance in a SSRF exploitation campaign targeting popular platforms.
Artificial Intelligence
Researchers have analyzed the ability of the Chinese gen-AI DeepSeek to create malware such as ransomware and keyloggers.
Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.
RegisterLearn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.
RegisterExpert Insights
A strong AI deployment starts with asking the right questions, mapping your risks, and thinking like an adversary — before it’s too late.
(Matt Honea)
It’s time for enterprises to stop treating unmanaged devices as an edge case and start securing them as part of a unified Zero Trust strategy.
(Etay Maor)
Many security professionals feel pressured to pursue leadership roles, but success can also mean going deeper, not just higher.
(Joshua Goldfarb)
AI is transforming the cybersecurity landscape—empowering attackers with powerful new tools while offering defenders a chance to fight back. But without stronger awareness and strategy, organizations risk falling behind.
(Trevin Edgeworth)
Agentic AI can be a great tool for many of the ‘gray area’ tasks that SOC analysts undertake.
(Marc Solomon)