Latest News

Understanding how threat hunting differs from reactive security provides a deeper understanding of the role, while hinting at how it will evolve in the future.

Priced $2,000 - $6,000 on a cybercrime forum, the MaaS toolkit promises publication on the Chrome Web Store.

TikTok has finalized a deal to create a new American entity, avoiding the looming threat of a ban in the United States.

10 years after disrupting the Ukrainian power grid, the APT targeted Poland with data-wiping malware.

The critical-severity vulnerability can be exploited via crafted network packets for remote code execution.

The WorldLeaks cybercrime group claims to have stolen information from the footwear and apparel giant’s systems.

Similar to recent FortiCloud single sign-on (SSO) login vulnerabilities, the attacks bypass authentication.

Other noteworthy stories that might have slipped under the radar: Cloudflare WAF bypass, Canonical Snap Store abused for malware delivery, Curl terminating bug bounty program

Threat actors are leveraging the file-sharing service for payload delivery in AitM phishing and BEC attacks.

Cyber regulations are where politics meets business – where business becomes subject to political realities.

Under Armour is investigating a recent data breach that purloined customers’ email addresses and other personal information.

CISA has added the Zimbra flaw to the KEV catalog along with three other bugs exploited in the wild.

Pwn2Own participants disclosed a total of 76 vulnerabilities during the three-day event. 

The exploitation of the authentication bypass vulnerability started two days after patches were released.

Dozens of Venezuelan nationals have been charged by the US for their role in ATM jackpotting attacks.