Cybercrime
Ukrainian national Vyacheslav Igorevich Penchukov has pleaded guilty to holding key roles in the Zeus and IcedID malware operations.
Hi, what are you looking for?
SecurityWeek
Malware & Threats
A new Android trojan named Brokewell can steal user’s sensitive information and allows attackers to take over devices.
Malware & Threats
More than 1,400 CrushFTP servers remain vulnerable to an actively exploited zero-day for which PoC has been published.
Malware & Threats
More than 90,000 unique IPs are still infected with a PlugX worm variant that spreads via infected flash drives.
Malware & Threats
A North Korea-linked threat actor hijacked the update mechanism of eScan antivirus to deploy backdoors and cryptocurrency miners.
Malware & Threats
A threat actor tracked as CoralRaider has been using multiple infostealers to harvest credentials from users worldwide.
Malware & Threats
Russia-linked APT28 deploys the GooseEgg post-exploitation tool against numerous US and European organizations.
Malware & Threats
The US government says it has neutralized a network of hundreds of Ubiquiti Edge OS routers under the control of the Russia's APT28 hackers.
Artificial Intelligence
Microsoft threat hunters say foreign APTs are interacting with OpenAI’s ChatGPT to automate malicious vulnerability research, target reconnaissance and malware creation tasks.
Malware & Threats
CVE-2024-21412, one of the security bypass zero-days fixed by Microsoft with Patch Tuesday updates, exploited by Water Hydra (DarkCasino).
Malware & Threats
Patch Tuesday: Microsoft pushes a massive batch of security-themed updates and calls urgent attention to exploits bypassing security features.
Malware & Threats
Backdoor deployed using recent Ivanti VPN vulnerability enables command execution, web request and system log theft.
Malware & Threats
A malware tactic dubbed ‘hunter-killer’ is growing, based on an analysis of more than 600,000 malware samples. This may become the standard approach for...
Malware & Threats
Written in Rust, the new RustDoor macOS backdoor appears linked to Black Basta and Alphv/BlackCat ransomware.
Malware & Threats
New CISA alert includes technical mitigations to harden attack surfaces and instructions to hunt for the Chinese government-backed hackers.
Malware & Threats
The US government slaps sanctions against six Iranian government officials linked to cyberattacks against Israeli PLC vendor Unitronics.
Malware & Threats
In an unprecedented move, CISA is demanding that federal agencies disconnect all instances of Ivanti Connect Secure and Ivanti Policy Secure products within 48...
Malware & Threats
Ivanti documents a brand-new zero-day and belatedly ships patches; Mandiant is reporting "broad exploitation activity."
Incident Response
Palo Alto Networks has shared remediation instructions for organizations whose firewalls have been hacked via CVE-2024-3400.
Management & Strategy
Noteworthy stories that might have slipped under the radar: Volkswagen hacked by Chinese threat group, DDoS service shut down, Rubrik IPO.
Artificial Intelligence
