| Oct. 18, 2025 |
Video call app Huddle01 exposed 600K+ user logs |
https://www.malwarebytes.com/blog/news/2025/10/video-call-app-huddle01-exposed-600k-user-logs
|
| Oct. 16, 2025 |
North Korea’s Famous Chollima APT Uses Trojanized Node.js App to Deploy OtterCookie RAT for Crypto Theft |
https://securityonline.info/north-koreas-famous-chollima-apt-uses-trojanized-node-js-app-to-deploy-ottercookie-rat-for-crypto-theft/
|
| Oct. 16, 2025 |
Fake LastPass, Bitwarden breach alerts lead to PC hijacks |
https://www.bleepingcomputer.com/news/security/fake-lastpass-bitwarden-breach-alerts-lead-to-pc-hijacks/
|
| Oct. 15, 2025 |
Chinese Hackers Use Velociraptor IR Tool in Ransomware Attacks |
https://www.darkreading.com/cybersecurity-operations/chinese-hackers-velociraptor-ir-tool-ransomware-attacks
|
| Oct. 15, 2025 |
Malicious crypto-stealing VSCode extensions resurface on OpenVSX |
https://www.bleepingcomputer.com/news/security/malicious-crypto-stealing-vscode-extensions-resurface-on-openvsx/
|
| Oct. 15, 2025 |
“Can you test my game?” Fake itch.io pages spread hidden malware to gamers |
https://www.malwarebytes.com/blog/threat-intel/2025/10/can-you-test-my-game-fake-itch-io-pages-spread-hidden-malware-to-gamers
|
| Oct. 14, 2025 |
How to Mitigate Supply Chain Attacks |
https://www.recordedfuture.com/blog/supply-chain-attacks
|
| Oct. 13, 2025 |
China-Nexus Actors Weaponize 'Nezha' Open Source Tool |
https://www.darkreading.com/cyberattacks-data-breaches/china-nexus-actors-nezha-open-source-tool
|
| Oct. 13, 2025 |
New Stealit Infostealer Abuses Node.js SEA Feature and Telegram C2 in Malware-as-a-Service Campaign |
https://securityonline.info/new-stealit-infostealer-abuses-node-js-sea-feature-and-telegram-c2-in-malware-as-a-service-campaign/
|
| Oct. 13, 2025 |
Red Hat Hackers Team Up With Scattered Lapsus$ Hunters |
https://www.darkreading.com/threat-intelligence/red-hat-hackers-team-up-scattered-lapsus-hunters
|
| Oct. 12, 2025 |
DDoS Botnet Aisuru Blankets US ISPs in Record DDoS |
https://krebsonsecurity.com/2025/10/ddos-botnet-aisuru-blankets-us-isps-in-record-ddos/
|
| Oct. 12, 2025 |
Spain dismantles “GXC Team” cybercrime syndicate, arrests leader |
https://www.bleepingcomputer.com/news/security/spain-dismantles-gxc-team-cybercrime-syndicate-arrests-leader/
|
| Oct. 10, 2025 |
Fake VPN and streaming app drops malware that drains your bank account |
https://www.malwarebytes.com/blog/news/2025/10/fake-vpn-and-streaming-app-drops-malware-that-drains-your-bank-account
|
| Oct. 10, 2025 |
Chaos Ransomware Upgrades With Aggressive New C++ Variant |
https://www.darkreading.com/threat-intelligence/chaos-ransomware-upgrades-aggressive-new-variant
|
| Oct. 9, 2025 |
Microsoft: Hackers target universities in “payroll pirate” attacks |
https://www.bleepingcomputer.com/news/security/hackers-target-university-hr-employees-in-payroll-pirate-attacks/
|
| Oct. 9, 2025 |
Crimson Collective hackers target AWS cloud instances for data theft |
https://www.bleepingcomputer.com/news/security/crimson-collective-hackers-target-aws-cloud-instances-for-data-theft/
|
| Oct. 9, 2025 |
Hackers now use Velociraptor DFIR tool in ransomware attacks |
https://www.bleepingcomputer.com/news/security/hackers-now-use-velociraptor-dfir-tool-in-ransomware-attacks/
|
| Oct. 8, 2025 |
'Confucius' Cyberspy Evolves From Stealers to Backdoors in Pakistan |
https://www.darkreading.com/threat-intelligence/south-asian-cyberspy-evolves-stealers-backdoors
|
| Oct. 8, 2025 |
ShinyHunters Wage Broad Corporate Extortion Spree |
https://krebsonsecurity.com/2025/10/shinyhunters-wage-broad-corporate-extortion-spree/
|
| Oct. 7, 2025 |
Massive Malicious NPM Package Attack Threatens Software Supply Chains |
https://www.recordedfuture.com/blog/massive-malicious-npm-package-attack-threatens-software-supply-chains
|
| Oct. 7, 2025 |
AI-Enabled Influence Operation Against Iran |
https://www.schneier.com/blog/archives/2025/10/ai-enabled-influence-operation-against-iran.html
|
| Oct. 6, 2025 |
UAT-8099 Hijacks Reputable Sites for SEO Fraud & Theft |
https://www.darkreading.com/cyberattacks-data-breaches/uat-8099-hijacks-reputable-sites-seo-fraud-theft
|
| Oct. 6, 2025 |
BIETA: A Technology Enablement Front for China's MSS |
https://www.recordedfuture.com/research/bieta-technology-enablement-front-for-chinas-mss
|
| Oct. 6, 2025 |
Cyberattackers Exploit Zimbra Zero-Day Via ICS |
https://www.darkreading.com/cyberattacks-data-breaches/attackers-exploit-zimbra-zero-day-ics
|
| Oct. 5, 2025 |
Massive surge in scans targeting Palo Alto Networks login portals |
https://www.bleepingcomputer.com/news/security/massive-surge-in-scans-targeting-palo-alto-networks-login-portals/
|
| Oct. 5, 2025 |
From threats to apology, hackers pull child data offline after public backlash |
https://www.malwarebytes.com/blog/news/2025/10/from-threats-to-apology-hackers-pull-child-data-offline-after-public-backlash
|
| Oct. 5, 2025 |
Cavalry Werewolf APT Targets Russian Agencies with FoalShell and Telegram C2 |
https://securityonline.info/cavalry-werewolf-apt-targets-russian-agencies-with-foalshell-and-telegram-c2/
|
| Oct. 4, 2025 |
XWorm V6.0 Resurfaces: Modular RAT Returns with Ransomware Plugin and Advanced Evasion |
https://securityonline.info/xworm-v6-0-resurfaces-modular-rat-returns-with-ransomware-plugin-and-advanced-evasion/
|
| Oct. 4, 2025 |
Akira Hits SonicWall VPNs in Broad Ransomware Campaign |
https://www.darkreading.com/application-security/akira-sonicwall-vpns-broad-ransomware-campaign
|
| Oct. 4, 2025 |
Real-World Executive Protection: How We Secure Our Own Leadership Team |
https://www.recordedfuture.com/blog/real-world-executive-protection-how-we-secure-our-own-leadership-team
|
| Oct. 2, 2025 |
Scam Facebook groups send malicious Android malware to seniors |
https://www.malwarebytes.com/blog/news/2025/10/scam-facebook-groups-send-malicious-android-malware-to-seniors
|
| Oct. 2, 2025 |
Android Spyware in the UAE Masquerades as ... Spyware |
https://www.darkreading.com/cyberattacks-data-breaches/android-spyware-uae-spyware
|
| Oct. 2, 2025 |
Sex offenders, terrorists, drug dealers, exposed in spyware breach |
https://www.malwarebytes.com/blog/news/2025/09/sex-offenders-terrorists-drug-dealers-exposed-in-spyware-breach
|
| Oct. 1, 2025 |
Android malware uses VNC to give attackers hands-on access |
https://www.bleepingcomputer.com/news/security/android-malware-uses-vnc-to-give-attackers-hands-on-access/
|
| Oct. 1, 2025 |
New China APT Strikes With Precision and Persistence |
https://www.darkreading.com/cyberattacks-data-breaches/new-china-apt-strikes-precision-persistence
|
| Sept. 30, 2025 |
Ransomware gang sought BBC reporter’s help in hacking media giant |
https://www.bleepingcomputer.com/news/security/ransomware-gang-sought-bbc-reporters-help-in-hacking-media-giant/
|
| Sept. 30, 2025 |
Ongoing APT35 Phishing Campaign Uncovered: Iranian Group Impersonates Video Conferencing Services |
https://securityonline.info/ongoing-apt35-phishing-campaign-uncovered-iranian-group-impersonates-video-conferencing-services/
|
| Sept. 29, 2025 |
ThreatBook Launches Best-of-Breed Advanced Threat Intelligence Solution |
https://securityonline.info/threatbook-launches-best-of-breed-advanced-threat-intelligence-solution/
|
| Sept. 29, 2025 |
TamperedChef Malware Rises: Deceptive Apps Use Signed Binaries and SEO Poisoning to Hijack Browsers |
https://securityonline.info/tamperedchef-malware-rises-deceptive-apps-use-signed-binaries-and-seo-poisoning-to-hijack-browsers/
|
| Sept. 29, 2025 |
New Phishing Campaign Impersonates Ukrainian Police to Deliver Amatera Stealer and PureMiner |
https://securityonline.info/new-phishing-campaign-impersonates-ukrainian-police-to-deliver-amatera-stealer-and-pureminer/
|
| Sept. 28, 2025 |
LockBit 5.0 Ransomware: Cross-Platform Evolution Targets Windows, Linux, and ESXi |
https://securityonline.info/lockbit-5-0-ransomware-cross-platform-evolution-targets-windows-linux-and-esxi/
|
| Sept. 28, 2025 |
INC ransomware: what you need to know |
https://www.fortra.com/blog/inc-ransomware-what-need-know
|
| Sept. 28, 2025 |
Fake Microsoft Teams installers push Oyster malware via malvertising |
https://www.bleepingcomputer.com/news/security/fake-microsoft-teams-installers-push-oyster-malware-via-malvertising/
|
| Sept. 28, 2025 |
Attackers Use Phony GitHub Pages to Deliver Mac Malware |
https://www.darkreading.com/application-security/attackers-phony-github-pages-mac-malware
|
| Sept. 27, 2025 |
Npm Package Hides Malware in Steganographic QR Codes |
https://www.darkreading.com/application-security/npm-package-malware-stenographic-qr-codes
|
| Sept. 27, 2025 |
Dutch teens arrested for trying to spy on Europol for Russia |
https://www.bleepingcomputer.com/news/security/dutch-teens-arrested-for-trying-to-spy-on-europol-for-russia/
|
| Sept. 26, 2025 |
Iranian State Hackers Use SSL.com Certificates to Sign Malware |
https://www.darkreading.com/vulnerabilities-threats/iranian-hackers-ssl-certificates-sign-malware
|
| Sept. 26, 2025 |
Threat Actor Deploys 'OVERSTEP' Backdoor in Ongoing SonicWall SMA Attacks |
https://www.darkreading.com/cyberattacks-data-breaches/threat-actor-deploys-overstep-backdoor-in-ongoing-sonicwall-sma-attacks
|
| Sept. 25, 2025 |
Russia Targets Moldovan Election in Disinformation Play |
https://www.darkreading.com/cybersecurity-operations/russia-moldovan-election-disinformation
|
| Sept. 25, 2025 |
Russian Disinformation Campaign Targets Moldova’s Pro-EU Elections |
https://securityonline.info/russian-disinformation-campaign-targets-moldovas-pro-eu-elections/
|
| Sept. 25, 2025 |
Feds Tie ‘Scattered Spider’ Duo to $115M in Ransoms |
https://krebsonsecurity.com/2025/09/feds-tie-scattered-spider-duo-to-115m-in-ransoms/
|
| Sept. 25, 2025 |
Microsoft warns of new XCSSET macOS malware variant targeting Xcode devs |
https://www.bleepingcomputer.com/news/security/microsoft-warns-of-new-xcsset-macos-malware-variant-targeting-xcode-devs/
|
| Sept. 25, 2025 |
Chinese APT Drops 'Brickstorm' Backdoors on Edge Devices |
https://www.darkreading.com/cyberattacks-data-breaches/chinese-apt-brickstorm-backdoors-edge-devices
|
| Sept. 25, 2025 |
ShadowV2: How a New DDoS Botnet Mimics Cloud-Native Apps |
https://securityonline.info/shadowv2-how-a-new-ddos-botnet-mimics-cloud-native-apps/
|
| Sept. 25, 2025 |
New SVG-based phishing campaign is a recipe for disaster |
https://www.malwarebytes.com/blog/news/2025/09/new-svg-based-phishing-campaign-is-a-recipe-for-disaster
|
| Sept. 24, 2025 |
Uncover Your Vendor’s Hidden Infrastructure Before it Becomes a Problem |
https://www.recordedfuture.com/blog/uncover-vendors-hidden-infrastructure-before-becomes-problem
|
| Sept. 24, 2025 |
New LNK Malware Uses Windows LOLBins to Evade Detection |
https://securityonline.info/new-lnk-malware-uses-windows-lolbins-to-evade-detection/
|
| Sept. 24, 2025 |
The Fall of Scattered Spider? Teen Member Surrenders Amid Group's Shutdown Claims |
https://www.darkreading.com/cybersecurity-operations/scattered-spider-surrenders-shutdown
|
| Sept. 24, 2025 |
SEO Poisoning Campaign Tied to Chinese Actor |
https://www.darkreading.com/cyberattacks-data-breaches/seo-poisoning-campaign-chinese-actor
|
| Sept. 24, 2025 |
RedNovember Targets Government, Defense, and Technology Organizations |
https://www.recordedfuture.com/research/rednovember-targets-government-defense-and-technology-organizations
|
| Sept. 24, 2025 |
Iran-Linked Hackers Target Europe With New Malware |
https://www.darkreading.com/cyberattacks-data-breaches/iran-linked-hackers-europe-new-malware
|
| Sept. 23, 2025 |
NPM package caught using QR Code to fetch cookie-stealing malware |
https://www.bleepingcomputer.com/news/security/npm-package-caught-using-qr-code-to-fetch-cookie-stealing-malware/
|
| Sept. 23, 2025 |
Zloader Resurfaces: Stealthier Trojan Evolves with DNS Tunneling and WebSocket C2 |
https://securityonline.info/zloader-resurfaces-stealthier-trojan-evolves-with-dns-tunneling-and-websocket-c2/
|
| Sept. 23, 2025 |
Fake Malwarebytes, LastPass, and others on GitHub serve malware |
https://www.malwarebytes.com/blog/news/2025/09/fake-malwarebytes-lastpass-and-others-on-github-serve-malware
|
| Sept. 23, 2025 |
Operation Rewrite: How a Malicious IIS Module Is Hijacking Websites |
https://securityonline.info/operation-rewrite-how-a-malicious-iis-module-is-hijacking-websites/
|
| Sept. 23, 2025 |
New Malware Found in npm Package “fezbox” Uses QR Codes to Steal Credentials |
https://securityonline.info/new-malware-found-in-npm-package-fezbox-uses-qr-codes-to-steal-credentials/
|
| Sept. 23, 2025 |
Banking Trojans Masquerading as Government and Payment Apps Target Android Users in Southeast Asia |
https://securityonline.info/banking-trojans-masquerading-as-government-and-payment-apps-target-android-users-in-southeast-asia/
|
| Sept. 22, 2025 |
PyPI Under Attack: New Malware ‘SilentSync’ Is Stealing Credentials |
https://securityonline.info/pypi-under-attack-new-malware-silentsync-is-stealing-credentials/
|
| Sept. 22, 2025 |
[Dark Reading Virtual Event] Know Your Enemy: How cybercriminals and nation-state hackers operate |
https://www.darkreading.com/events/-dark-reading-virtual-event-know-your-enemy-how-cybercriminals-and-nation-state-hackers-operate
|
| Sept. 22, 2025 |
LastPass Warns of New SEO Poisoning Attack Targeting Mac Users |
https://securityonline.info/lastpass-warns-of-new-seo-poisoning-attack-targeting-mac-users/
|
| Sept. 22, 2025 |
CopyCop Expands Its Disinformation Network With AI-Generated Content and Global Targets |
https://securityonline.info/copycop-expands-its-disinformation-network-with-ai-generated-content-and-global-targets/
|
| Sept. 22, 2025 |
BlackLock Ransomware: A New Cross-Platform Threat Spreading Rapidly |
https://securityonline.info/blacklock-ransomware-a-new-cross-platform-threat-spreading-rapidly/
|
| Sept. 21, 2025 |
Raven Stealer Scavenges Chromium Data Via Telegram |
https://www.darkreading.com/vulnerabilities-threats/raven-stealer-scavenges-chrome-data-telegram
|
| Sept. 21, 2025 |
The Database Was the Door: A Ransomware Attack Began with an Exposed Oracle Serve |
https://securityonline.info/the-database-was-the-door-a-ransomware-attack-began-with-an-exposed-oracle-serve/
|
| Sept. 21, 2025 |
CountLoader: A New Malware Loader Linked to Russian Ransomware Groups |
https://securityonline.info/countloader-a-new-malware-loader-linked-to-russian-ransomware-groups/
|
| Sept. 20, 2025 |
DOJ Charges UK National Linked to Scattered Spider in $115M Cyber Extortion Scheme |
https://securityonline.info/doj-charges-uk-national-linked-to-scattered-spider-in-115m-cyber-extortion-scheme/
|
| Sept. 20, 2025 |
ShinyHunters Expands With AI-Powered Vishing, Supply Chain Intrusions, and Insider Recruitment |
https://securityonline.info/shinyhunters-expands-with-ai-powered-vishing-supply-chain-intrusions-and-insider-recruitment/
|
| Sept. 20, 2025 |
Iranian State APT Blitzes Telcos & Satellite Companies |
https://www.darkreading.com/cyberattacks-data-breaches/iranian-state-apt-telcos-satellite-companies
|
| Sept. 20, 2025 |
MuddyWater APT Shifts Tactics to Custom Malware |
https://securityonline.info/muddywater-apt-shifts-tactics-to-custom-malware/
|
| Sept. 20, 2025 |
XillenStealer: New Open-Source Malware Lowers Cybercrime Barrier |
https://securityonline.info/xillenstealer-new-open-source-malware-lowers-cybercrime-barrier/
|
| Sept. 20, 2025 |
'Vane Viper' Threat Group Tied to PropellerAds, Commercial Entities |
https://www.darkreading.com/vulnerabilities-threats/vane-viper-threat-group-propellerads
|
| Sept. 20, 2025 |
Emerging Yurei Ransomware Claims First Victims |
https://www.darkreading.com/threat-intelligence/emerging-yurei-ransomware-claims-first-victims
|
| Sept. 19, 2025 |
CISA exposes malware kits deployed in Ivanti EPMM attacks |
https://www.bleepingcomputer.com/news/security/cisa-exposes-malware-kits-deployed-in-ivanti-epmm-attacks/
|
| Sept. 18, 2025 |
Microsoft and Cloudflare disrupt massive RaccoonO365 phishing service |
https://www.bleepingcomputer.com/news/security/microsoft-and-cloudflare-disrupt-massive-raccoono365-phishing-service/
|
| Sept. 18, 2025 |
How to Protect Your People and Assets from Targeted Threats |
https://www.recordedfuture.com/blog/how-to-protect-your-people-and-assets-from-targeted-threats
|
| Sept. 18, 2025 |
SystemBC malware turns infected VPS systems into proxy highway |
https://www.bleepingcomputer.com/news/security/systembc-malware-turns-infected-vps-systems-into-proxy-highway/
|
| Sept. 18, 2025 |
Disrupted phishing service was after Microsoft 365 credentials |
https://www.malwarebytes.com/blog/news/2025/09/disrupted-phishing-service-was-after-microsoft-365-credentials
|
| Sept. 18, 2025 |
UK arrests 'Scattered Spider' teens linked to Transport for London hack |
https://www.bleepingcomputer.com/news/security/uk-arrests-scattered-spider-teens-linked-to-transport-for-london-hack/
|
| Sept. 18, 2025 |
CopyCop Deepens Its Playbook with New Websites and Targets |
https://www.recordedfuture.com/research/copycop-deepens-its-playbook-with-new-websites-and-targets
|
| Sept. 17, 2025 |
From ClickFix to MetaStealer: Dissecting Evolving Threat Actor Techniques |
https://www.bleepingcomputer.com/news/security/from-clickfix-to-metastealer-dissecting-evolving-threat-actor-techniques/
|
| Sept. 17, 2025 |
224 malicious apps removed from the Google Play Store after ad fraud campaign discovered |
https://www.malwarebytes.com/blog/news/2025/09/224-malicious-apps-removed-from-the-google-play-store-after-ad-fraud-campaign-discovered
|
| Sept. 17, 2025 |
North Korean Group Targets South With Military ID Deepfakes |
https://www.darkreading.com/cyberattacks-data-breaches/north-korean-group-south-military-id-deepfakes
|
| Sept. 17, 2025 |
Self-Replicating 'Shai-hulud' Worm Targets NPM Packages |
https://www.darkreading.com/application-security/self-replicating-shai-hulud-worm-npm-packages
|
| Sept. 17, 2025 |
FBI Warns of Threat Actors Hitting Salesforce Customers |
https://www.darkreading.com/cyberattacks-data-breaches/fbi-warns-threat-actors-salesforce-customers
|
| Sept. 17, 2025 |
A New Crisis for CrowdStrike: A Self-Replicating Worm Has Compromised Its NPM Packages |
https://securityonline.info/a-new-crisis-for-crowdstrike-a-self-replicating-worm-has-compromised-its-npm-packages/
|
| Sept. 17, 2025 |
ShinyHunters claims 1.5 billion Salesforce records stolen in Drift hacks |
https://www.bleepingcomputer.com/news/security/shinyhunters-claims-15-billion-salesforce-records-stolen-in-drift-hacks/
|
| Sept. 17, 2025 |
Hacktivists Launch Coordinated Attacks on India’s Infrastructure |
https://securityonline.info/hacktivists-launch-coordinated-attacks-on-indias-infrastructure/
|
| Sept. 16, 2025 |
Google nukes 224 Android malware apps behind massive ad fraud campaign |
https://www.bleepingcomputer.com/news/security/google-nukes-224-android-malware-apps-behind-massive-ad-fraud-campaign/
|
| Sept. 16, 2025 |
Unmasking the DarkCloud: A New Stealer Is Hiding Malware in JPG Files |
https://securityonline.info/unmasking-the-darkcloud-a-new-stealer-is-hiding-malware-in-jpg-files/
|
| Sept. 16, 2025 |
KillSec Ransomware Hits Brazilian Healthcare Software Provider |
https://www.darkreading.com/cyberattacks-data-breaches/killsec-ransomware-brazil-healthcare-software-provider
|
| Sept. 16, 2025 |
Maranhão Stealer: A New Malware Hijacks Gamers’ PCs Through Pirated Games |
https://securityonline.info/maranhao-stealer-a-new-malware-hijacks-gamers-pcs-through-pirated-games/
|
| Sept. 16, 2025 |
HijackLoader: The Stealthy Malware Loader Powering Modern Cyberattacks |
https://securityonline.info/hijackloader-the-stealthy-malware-loader-powering-modern-cyberattacks/
|
| Sept. 16, 2025 |
Self-Replicating Worm Hits 180+ Software Packages |
https://krebsonsecurity.com/2025/09/self-replicating-worm-hits-180-software-packages/
|
| Sept. 16, 2025 |
'HybridPetya' Ransomware Bypasses Secure Boot |
https://www.darkreading.com/vulnerabilities-threats/hybridpetya-ransomware-bypasses-secure-boot
|
| Sept. 16, 2025 |
Self-propagating supply chain attack hits 187 npm packages |
https://www.bleepingcomputer.com/news/security/self-propagating-supply-chain-attack-hits-187-npm-packages/
|
| Sept. 15, 2025 |
Lovesac warns customers their data was breached after suspected RansomHub attack six months ago |
https://www.bitdefender.com/en-us/blog/hotforsecurity/lovesac-warns-customers-their-data-was-breached-after-suspected-ransomhub-attack-six-months-ago
|
| Sept. 15, 2025 |
Google confirms fraudulent account created in law enforcement portal |
https://www.bleepingcomputer.com/news/security/google-confirms-fraudulent-account-created-in-law-enforcement-portal/
|
| Sept. 15, 2025 |
Google confirms hackers gained access to law enforcement portal |
https://www.bleepingcomputer.com/news/security/google-confirms-hackers-gained-access-to-law-enforcement-portal/
|
| Sept. 15, 2025 |
FBI Alert: Two Cybercriminal Groups Are Actively Compromising Salesforce |
https://securityonline.info/fbi-alert-two-cybercriminal-groups-are-actively-compromising-salesforce/
|
| Sept. 15, 2025 |
China-Aligned Hackers Unleash Upgraded Toneshell and New USB Worm |
https://securityonline.info/china-aligned-hackers-unleash-upgraded-toneshell-and-new-usb-worm/
|
| Sept. 15, 2025 |
Unveiling BaoLoader: How One Malware Family Abuses Trust for 7 Years |
https://securityonline.info/unveiling-baoloader-how-one-malware-family-abuses-trust-for-7-years/
|
| Sept. 14, 2025 |
Cyberattack on Kazakhstan's Largest Oil Company Was 'Simulation' |
https://www.darkreading.com/cyberattacks-data-breaches/russian-apt-kazakhstan-largest-oil-company
|
| Sept. 14, 2025 |
Vidar Infostealer Back With a Vengeance |
https://www.darkreading.com/endpoint-security/vidar-infostealer-back-with-vengeance
|
| Sept. 14, 2025 |
'WhiteCobra' floods VSCode market with crypto-stealing extensions |
https://www.bleepingcomputer.com/news/security/whitecobra-floods-vscode-market-with-crypto-stealing-extensions/
|
| Sept. 14, 2025 |
FBI warns of UNC6040, UNC6395 hackers stealing Salesforce data |
https://www.bleepingcomputer.com/news/security/fbi-warns-of-unc6040-unc6395-hackers-stealing-salesforce-data/
|
| Sept. 13, 2025 |
EggStreme: New Fileless Malware from a Chinese APT Targets Philippine Military |
https://securityonline.info/eggstreme-new-fileless-malware-from-a-chinese-apt-targets-philippine-military/
|
| Sept. 13, 2025 |
Unveiling VoidProxy: The Phishing-as-a-Service That Bypasses MFA |
https://securityonline.info/unveiling-voidproxy-the-phishing-as-a-service-that-bypasses-mfa/
|
| Sept. 13, 2025 |
AI-Enhanced Malware Sports Super-Stealthy Tactics |
https://www.darkreading.com/cyberattacks-data-breaches/ai-backed-malware-hits-companies-worldwide
|
| Sept. 13, 2025 |
Meet ZynorRAT: The New Cross-Platform Malware Controlled via Telegram |
https://securityonline.info/meet-zynorrat-the-new-cross-platform-malware-controlled-via-telegram/
|
| Sept. 13, 2025 |
Salty2FA Takes Phishing Kits to Enterprise Level |
https://www.darkreading.com/cyberattacks-data-breaches/salty2fa-phishing-kits-enterprise-level
|
| Sept. 13, 2025 |
kkRAT: A New Malware Blends Crypto Hijacking with Legitimate RMM Tools |
https://securityonline.info/kkrat-a-new-malware-blends-crypto-hijacking-with-legitimate-rmm-tools/
|
| Sept. 13, 2025 |
ToneShell Backdoor Evolves With Anti-Analysis Tricks, Continues Targeting Myanmar |
https://securityonline.info/toneshell-backdoor-evolves-with-anti-analysis-tricks-continues-targeting-myanmar/
|
| Sept. 13, 2025 |
BlackNevas Ransomware: A Persistent Global Threat With Impossible-to-Decrypt Payloads |
https://securityonline.info/blacknevas-ransomware-a-persistent-global-threat-with-impossible-to-decrypt-payloads/
|
| Sept. 12, 2025 |
New HybridPetya ransomware can bypass UEFI Secure Boot |
https://www.bleepingcomputer.com/news/security/new-hybridpetya-ransomware-can-bypass-uefi-secure-boot/
|
| Sept. 11, 2025 |
Dormant macOS Backdoor ChillyHell Resurfaces |
https://www.darkreading.com/endpoint-security/dormant-macos-backdoor-chillyhell-resurfaces
|
| Sept. 11, 2025 |
The Intelligence Operations Organizations Need |
https://www.recordedfuture.com/blog/the-intelligence-operations-organizations-need
|
| Sept. 11, 2025 |
ChillyHell: A New macOS Backdoor Bypassed Apple Notarization for Years |
https://securityonline.info/chillyhell-a-new-macos-backdoor-bypassed-apple-notarization-for-years/
|
| Sept. 11, 2025 |
A Framework for Understanding and Anticipating Vladimir Putin’s Foreign Policy Actions |
https://www.recordedfuture.com/research/framework-understanding-anticipating-vladimir-putins-foreign-policy-actions
|
| Sept. 11, 2025 |
Huge NPM Supply Chain Attack Goes Out With Whimper |
https://www.darkreading.com/application-security/huge-npm-supply-chain-attack-whimper
|
| Sept. 11, 2025 |
Beyond Cobalt Strike: A New Open-Source Hacking Tool Is on the Rise |
https://securityonline.info/beyond-cobalt-strike-a-new-open-source-hacking-tool-is-on-the-rise/
|
| Sept. 11, 2025 |
CyberVolk Ransomware’s Decryption Flaw Makes Data Recovery Impossible |
https://securityonline.info/cybervolk-ransomwares-decryption-flaw-makes-data-recovery-impossible/
|
| Sept. 11, 2025 |
Chinese Hackers Allegedly Pose as US Lawmaker |
https://www.darkreading.com/cybersecurity-operations/chinese-hackers-allegedly-pose-us-lawmaker
|
| Sept. 11, 2025 |
Bulletproof Host Stark Industries Evades EU Sanctions |
https://krebsonsecurity.com/2025/09/bulletproof-host-stark-industries-evades-eu-sanctions/
|
| Sept. 11, 2025 |
Panama Ministry of Economy discloses breach claimed by INC ransomware |
https://www.bleepingcomputer.com/news/security/panama-ministry-of-economy-discloses-breach-claimed-by-inc-ransomware/
|
| Sept. 11, 2025 |
'Gentlemen' Ransomware Abuses Vulnerable Driver to Kill Security Gear |
https://www.darkreading.com/vulnerabilities-threats/gentlemen-ransomware-vulnerable-driver-security-gear
|
| Sept. 10, 2025 |
Getting Ahead of Payment Fraud: The Early Detection Window You're Missing |
https://www.recordedfuture.com/blog/getting-ahead-of-payment-fraud
|
| Sept. 10, 2025 |
KillSec Ransomware Strikes Brazilian Healthcare Provider, Exposing Patient Data |
https://securityonline.info/killsec-ransomware-strikes-brazilian-healthcare-provider-exposing-patient-data/
|
| Sept. 9, 2025 |
US charges admin of LockerGoga, MegaCortex, Nefilim ransomware |
https://www.bleepingcomputer.com/news/security/us-charges-admin-of-lockergoga-megacortex-nefilim-ransomware/
|
| Sept. 9, 2025 |
Link11 Reports 225% more DDoS attacks in H1 2025 with new tactics against infrastructure |
https://securityonline.info/link11-reports-225-more-ddos-attacks-in-h1-2025-with-new-tactics-against-infrastructure/
|
| Sept. 9, 2025 |
RatOn: The New Android Trojan That Steals Crypto and Uses NFC Relay Attacks |
https://securityonline.info/raton-the-new-android-trojan-that-steals-crypto-and-uses-nfc-relay-attacks/
|
| Sept. 9, 2025 |
'MostereRAT' Malware Blends In, Blocks Security Tools |
https://www.darkreading.com/cyberattacks-data-breaches/mostererat-blocks-security-tools
|
| Sept. 9, 2025 |
Beyond Cryptominers: A New Malware Strain Is Hijacking Exposed Docker APIs |
https://securityonline.info/beyond-cryptominers-a-new-malware-strain-is-hijacking-exposed-docker-apis/
|
| Sept. 9, 2025 |
Hackers hide behind Tor in exposed Docker API breaches |
https://www.bleepingcomputer.com/news/security/hackers-hide-behind-tor-in-exposed-docker-api-breaches/
|
| Sept. 9, 2025 |
Massive npm Supply Chain Attack: Qix’s Account Compromised, Billions of Weekly Downloads at Risk |
https://securityonline.info/massive-npm-supply-chain-attack-qixs-account-compromised-billions-of-weekly-downloads-at-risk/
|
| Sept. 8, 2025 |
50,000 Emails a Day: How a Cloud Flaw Is Fueling Phishing Campaigns |
https://securityonline.info/50000-emails-a-day-how-a-cloud-flaw-is-fueling-phishing-campaigns/
|
| Sept. 8, 2025 |
Surge in networks scans targeting Cisco ASA devices raise concerns |
https://www.bleepingcomputer.com/news/security/surge-in-networks-scans-targeting-cisco-asa-devices-raise-concerns/
|
| Sept. 8, 2025 |
Hackers steal 3,325 secrets in GhostAction GitHub supply chain attack |
https://www.bleepingcomputer.com/news/security/hackers-steal-3-325-secrets-in-ghostaction-github-supply-chain-attack/
|
| Sept. 8, 2025 |
Secretive MaaS Group 'TAG-150' Develops Novel 'CastleRAT' |
https://www.darkreading.com/threat-intelligence/secretive-maas-group-tag-150-novel-castlerat
|
| Sept. 8, 2025 |
Phishing Empire Runs Undetected on Google, Cloudflare |
https://www.darkreading.com/cloud-security/phishing-empire-undetected-google-cloudflare
|
| Sept. 7, 2025 |
Noisy Bear: A New APT Group Is Spying on Kazakhstan’s Energy Sector |
https://securityonline.info/noisy-bear-a-new-apt-group-is-spying-on-kazakhstans-energy-sector/
|
| Sept. 7, 2025 |
NightshadeC2: A New Botnet Is Using “UAC Prompt Bombing” to Bypass Windows Defender |
https://securityonline.info/nightshadec2-a-new-botnet-is-using-uac-prompt-bombing-to-bypass-windows-defender/
|
| Sept. 7, 2025 |
Iran MOIS Phishes 50+ Embassies, Ministries, Int'l Orgs |
https://www.darkreading.com/cyberattacks-data-breaches/iran-mois-50-embassies-ministries-intl-orgs
|
| Sept. 6, 2025 |
Kimsuky APT Is Using Social Engineering and AppleSeed Malware to Spy on South Korea |
https://securityonline.info/kimsuky-apt-is-using-social-engineering-and-appleseed-malware-to-spy-on-south-korea/
|
| Sept. 6, 2025 |
Beyond Cracked Apps: New macOS Malware Is Using the Terminal to Steal Data |
https://securityonline.info/beyond-cracked-apps-new-macos-malware-is-using-the-terminal-to-steal-data/
|
| Sept. 6, 2025 |
Acronis TRU Uncovers Surge in ScreenConnect Abuse with Dual-RAT Deployment |
https://securityonline.info/acronis-tru-uncovers-surge-in-screenconnect-abuse-with-dual-rat-deployment/
|
| Sept. 6, 2025 |
NotDoor: A New Backdoor by Russia’s APT28 Is Hiding in Microsoft Outlook Macros |
https://securityonline.info/notdoor-a-new-backdoor-by-russias-apt28-is-hiding-in-microsoft-outlook-macros/
|
| Sept. 6, 2025 |
A Massive Coordinated Attack Is Probing Cisco ASA Devices |
https://securityonline.info/a-massive-coordinated-attack-is-probing-cisco-asa-devices/
|
| Sept. 6, 2025 |
Beyond Simple Scripts: A New XWorm Campaign Uses Multi-Stage Stealth |
https://securityonline.info/beyond-simple-scripts-a-new-xworm-campaign-uses-multi-stage-stealth/
|
| Sept. 6, 2025 |
VirusTotal finds hidden malware phishing campaign in SVG files |
https://www.bleepingcomputer.com/news/security/virustotal-finds-hidden-malware-phishing-campaign-in-svg-files/
|
| Sept. 6, 2025 |
Scammers Are Using Grok to Spread Malicious Links on X |
https://www.darkreading.com/threat-intelligence/scammers-grok-malicious-links-x
|
| Sept. 6, 2025 |
AI-powered malware hit 2,180 GitHub accounts in “s1ngularity” attack |
https://www.bleepingcomputer.com/news/security/ai-powered-malware-hit-2-180-github-accounts-in-s1ngularity-attack/
|
| Sept. 5, 2025 |
Chinese Hackers Game Google to Boost Gambling Sites |
https://www.darkreading.com/cyber-risk/chinese-hackers-google-boost-gambling-sites
|
| Sept. 5, 2025 |
SentinelLABS Reveals How North Korean “Contagious Interview” Operators Abuse Threat Intel Platforms |
https://securityonline.info/sentinellabs-reveals-how-north-korean-contagious-interview-operators-abuse-threat-intel-platforms/
|
| Sept. 4, 2025 |
From CastleLoader to CastleRAT: TAG-150 Advances Operations with Multi-Tiered Infrastructure |
https://www.recordedfuture.com/research/from-castleloader-to-castlerat-tag-150-advances-operations
|
| Sept. 4, 2025 |
US offers $10 million bounty for info on Russian FSB hackers |
https://www.bleepingcomputer.com/news/security/us-offers-10-million-bounty-for-info-on-russian-fsb-hackers/
|
| Sept. 4, 2025 |
Why Threat Hunting Should Be Part of Every Security Program |
https://www.darkreading.com/threat-intelligence/threat-hunting-part-every-security-program
|
| Sept. 3, 2025 |
Influence Operations and Conflict Escalation in South Asia |
https://www.recordedfuture.com/research/influence-operations-and-conflict-escalation-in-south-asia
|
| Sept. 3, 2025 |
Russia's APT28 Targets Microsoft Outlook With 'NotDoor' Malware |
https://www.darkreading.com/endpoint-security/apt28-outlook-notdoor-backdoor
|
| Sept. 3, 2025 |
Threat actors abuse X’s Grok AI to spread malicious links |
https://www.bleepingcomputer.com/news/security/threat-actors-abuse-xs-grok-ai-to-spread-malicious-links/
|
| Sept. 3, 2025 |
Russian Influence Assets Converge on Moldovan Elections |
https://www.recordedfuture.com/research/russian-influence-assets-converge-on-moldovan-elections
|
| Sept. 2, 2025 |
Cephalus ransomware: What you need to know |
https://www.fortra.com/blog/cephalus-ransomware-what-you-need-know
|
| Sept. 1, 2025 |
Akira, Cl0p Top List of 5 Most Active Ransomware-as-a-Service Groups |
https://www.darkreading.com/threat-intelligence/akira-clop-top-5-most-active-ransomware-groups-list
|
| Sept. 1, 2025 |
Deepfakes and Deception: North Korean IT Workers Infiltrating Companies to Fund Regime |
https://securityonline.info/deepfakes-and-deception-north-korean-it-workers-infiltrating-companies-to-fund-regime/
|
| Sept. 1, 2025 |
China Hijacks Captive Portals to Spy on Asian Diplomats |
https://www.darkreading.com/cyberattacks-data-breaches/china-hijacks-captive-portals-spy-asian-diplomats
|
| Sept. 1, 2025 |
Amazon disrupts Russian APT29 hackers targeting Microsoft 365 |
https://www.bleepingcomputer.com/news/security/amazon-disrupts-russian-apt29-hackers-targeting-microsoft-365/
|
| Sept. 1, 2025 |
The Ongoing Fallout from a Breach at AI Chatbot Maker Salesloft |
https://krebsonsecurity.com/2025/09/the-ongoing-fallout-from-a-breach-at-ai-chatbot-maker-salesloft/
|
| Sept. 1, 2025 |
Brokewell Android malware delivered through fake TradingView ads |
https://www.bleepingcomputer.com/news/security/brokewell-android-malware-delivered-through-fake-tradingview-ads/
|
| Aug. 31, 2025 |
Trojan Horse: A Fake PDF Editor Is Actually a Malware-Laden Backdoor |
https://securityonline.info/trojan-horse-a-fake-pdf-editor-is-actually-a-malware-laden-backdoor/
|
| Aug. 31, 2025 |
Anthropic AI Used to Automate Data Extortion Campaign |
https://www.darkreading.com/cyberattacks-data-breaches/anthropic-ai-automate-data-extortion-campaign
|
| Aug. 31, 2025 |
A Deceptive Ad on Facebook Is Spreading Advanced Android Malware |
https://securityonline.info/a-deceptive-ad-on-facebook-is-spreading-advanced-android-malware/
|
| Aug. 31, 2025 |
A Digital Watering Hole: How Russia’s APT29 Is Abusing Microsoft Auth Flow |
https://securityonline.info/a-digital-watering-hole-how-russias-apt29-is-abusing-microsoft-auth-flow/
|
| Aug. 30, 2025 |
AI-Powered Ransomware Has Arrived With 'PromptLock' |
https://www.darkreading.com/vulnerabilities-threats/ai-powered-ransomware-promptlock
|
| Aug. 30, 2025 |
1,000+ Devs Lose Their Secrets to an AI-Powered Stealer |
https://www.darkreading.com/cyberattacks-data-breaches/1000-devs-lose-secrets-ai-powered-stealer
|
| Aug. 30, 2025 |
MystRodX: A Stealthy New Backdoor Found Hiding in Networks for Over 20 Months |
https://securityonline.info/mystrodx-a-stealthy-new-backdoor-found-hiding-in-networks-for-over-20-months/
|
| Aug. 30, 2025 |
TamperedChef infostealer delivered through fraudulent PDF Editor |
https://www.bleepingcomputer.com/news/security/tamperedchef-infostealer-delivered-through-fraudulent-pdf-editor/
|
| Aug. 30, 2025 |
Storm-0501 Hits Enterprise With 'Cloud-Based Ransomware' Attack |
https://www.darkreading.com/cloud-security/storm-0501-cloud-based-ransomware-attack
|
| Aug. 30, 2025 |
Russian Influence Operations Targeting Germany’s 2025 Elections |
https://www.recordedfuture.com/research/stimmen-aus-moskau-russian-influence-operations-target-german-elections
|
| Aug. 29, 2025 |
RedMike Exploits Unpatched Cisco Devices in Global Telecommunications Campaign |
https://www.recordedfuture.com/research/redmike-salt-typhoon-exploits-vulnerable-devices
|
| Aug. 29, 2025 |
How Security Leaders Defend Their Attack Surface |
https://www.recordedfuture.com/blog/how-security-leaders-defend-their-attack-surface
|
| Aug. 29, 2025 |
Interlock Ransomware Strikes: A New Strain Is Wrecking Havoc in North America and Europe |
https://securityonline.info/interlock-ransomware-strikes-a-new-strain-is-wrecking-havoc-in-north-america-and-europe/
|
| Aug. 29, 2025 |
H1 2025 Malware and Vulnerability Trends |
https://www.recordedfuture.com/research/h1-2025-malware-and-vulnerability-trends
|
| Aug. 29, 2025 |
North Korea’s Fraudulent IT Employment Scheme: A Cybersecurity Threat |
https://www.recordedfuture.com/research/inside-the-scam-north-koreas-it-worker-threat
|
| Aug. 29, 2025 |
Top 6 Threat Intelligence Outlooks and Strategies for 2025 | Recorded Future |
https://www.recordedfuture.com/blog/6-threat-intelligence-outlooks-strategies-2025
|
| Aug. 29, 2025 |
'ZipLine' Phishers Flip Script as Victims Email First |
https://www.darkreading.com/cyberattacks-data-breaches/zipline-phishers-victims-email-first
|
| Aug. 28, 2025 |
How Threat Actors Are Rizzing Up Your AI for Profit |
https://www.recordedfuture.com/blog/how-threat-actors-are-rizzing-up-your-ai-for-profit
|
| Aug. 28, 2025 |
Hackers Lay in Wait, Then Knocked Out Iran Ship Comms |
https://www.darkreading.com/cyber-risk/hackers-knocked-out-iran-ship-comms
|
| Aug. 28, 2025 |
NX Compromised to Check for Claude Code CLI and Explore Filesystem for Credentials |
https://www.reddit.com/r/netsec/comments/1n1ichu/nx_compromised_to_check_for_claude_code_cli_and/
|
| Aug. 28, 2025 |
Malware devs abuse Anthropic’s Claude AI to build ransomware |
https://www.bleepingcomputer.com/news/security/malware-devs-abuse-anthropics-claude-ai-to-build-ransomware/
|
| Aug. 28, 2025 |
Claude AI chatbot abused to launch “cybercrime spree” |
https://www.malwarebytes.com/blog/news/2025/08/claude-ai-chatbot-abused-to-launch-cybercrime-spree
|
| Aug. 28, 2025 |
Claude AI chatbot abused to launch “cybercrime spree” |
https://www.malwarebytes.com/blog/uncategorized/2025/08/claude-ai-chatbot-abused-to-launch-cybercrime-spree
|
| Aug. 28, 2025 |
Experimental PromptLock ransomware uses AI to encrypt, steal data |
https://www.bleepingcomputer.com/news/security/experimental-promptlock-ransomware-uses-ai-to-encrypt-steal-data/
|
| Aug. 27, 2025 |
Nx Build System Compromise Targets Developers with AI-Enhanced Supply Chain Attack |
https://securityonline.info/nx-build-system-compromise-targets-developers-with-ai-enhanced-supply-chain-attack/
|
| Aug. 27, 2025 |
One Step Ahead: Stark Industries Solutions Preempts EU Sanctions |
https://www.recordedfuture.com/research/one-step-ahead-stark-industries-solutions-preempts-eu-sanctions
|
| Aug. 27, 2025 |
2024 Malicious Infrastructure Insights: Key Trends and Threats |
https://www.recordedfuture.com/research/2024-malicious-infrastructure-report
|
| Aug. 27, 2025 |
Salesloft breached to steal OAuth tokens for Salesforce data-theft attacks |
https://www.bleepingcomputer.com/news/security/salesloft-breached-to-steal-oauth-tokens-for-salesforce-data-theft-attacks/
|
| Aug. 27, 2025 |
Silk Typhoon hackers hijack network captive portals in diplomat attacks |
https://www.bleepingcomputer.com/news/security/silk-typhoon-hackers-hijack-network-captive-portals-in-diplomat-attacks/
|
| Aug. 27, 2025 |
How Huione Marketplace Fuels Global Cyber Fraud in 2024 |
https://www.recordedfuture.com/blog/huoine-marketplace-reshaping-global-fraud
|
| Aug. 26, 2025 |
Surge in coordinated scans targets Microsoft RDP auth servers |
https://www.bleepingcomputer.com/news/security/surge-in-coordinated-scans-targets-microsoft-rdp-auth-servers/
|
| Aug. 26, 2025 |
DSLRoot, Proxies, and the Threat of ‘Legal Botnets’ |
https://krebsonsecurity.com/2025/08/dslroot-proxies-and-the-threat-of-legal-botnets/
|
| Aug. 26, 2025 |
TAG-144’s Persistent Grip on South American Organizations |
https://www.recordedfuture.com/research/tag-144s-persistent-grip-on-south-american-organizations
|
| Aug. 26, 2025 |
Defending against malware persistence techniques with Wazuh |
https://www.bleepingcomputer.com/news/security/defending-against-malware-persistence-techniques-with-wazuh/
|
| Aug. 26, 2025 |
Security Data Paradox: When More Data Means Less Visibility |
https://www.recordedfuture.com/blog/security-data-paradox
|
| Aug. 25, 2025 |
How Threat Intelligence Enhances Security Spending Efficiency |
https://www.recordedfuture.com/blog/how-threat-intel-drives-smarter-security
|
| Aug. 25, 2025 |
Malicious Android apps with 19M installs removed from Google Play |
https://www.bleepingcomputer.com/news/security/malicious-android-apps-with-19m-installs-removed-from-google-play/
|
| Aug. 25, 2025 |
How TAG-124 Enables Targeted Malware Attacks via Traffic Distribution Systems |
https://www.recordedfuture.com/blog/massive-hidden-infrastructure-enabling-big-game-hunting-at-scale
|
| Aug. 24, 2025 |
Golden Chickens Unveils TerraStealerV2 and TerraLogger: New Credential Theft Tools Identified by Insikt Group |
https://www.recordedfuture.com/research/terrastealerv2-and-terralogger
|
| Aug. 24, 2025 |
MintsLoader Malware Analysis: Multi-Stage Loader Used by TAG-124 and SocGholish |
https://www.recordedfuture.com/research/uncovering-mintsloader-with-recorded-future-malware-intelligence-hunting
|
| Aug. 24, 2025 |
Purchase Scam Networks: How fraudsters prey on victims |
https://www.recordedfuture.com/blog/purchase-scam-networks-prey-on-victims
|
| Aug. 24, 2025 |
Predator Spyware Resurgence: Insikt Group Exposes New Global Infrastructure |
https://www.recordedfuture.com/research/predator-still-active-new-links-identified
|
| Aug. 24, 2025 |
Understanding the Retaliation Window: Cybersecurity Risks and Response Timing |
https://www.recordedfuture.com/blog/the-retaliation-window
|
| Aug. 24, 2025 |
TAG-110 Targets Tajikistan: New Macro Word Documents Phishing Tactics |
https://www.recordedfuture.com/research/russia-aligned-tag-110-targets-tajikistan-with-macro-enabled
|
| Aug. 24, 2025 |
Threats to the 2025 NATO Summit: Cyber, Influence, and Hybrid Risks |
https://www.recordedfuture.com/research/threats-2025-nato-summit
|
| Aug. 23, 2025 |
Transforming Malware Defense for the AI Era |
https://www.recordedfuture.com/blog/transforming-malware-defense
|
| Aug. 23, 2025 |
UAC-0057 Targets Ukraine and Poland with Weaponized Archives and Evolving Implants |
https://securityonline.info/uac-0057-targets-ukraine-and-poland-with-weaponized-archives-and-evolving-implants/
|
| Aug. 23, 2025 |
YouTube Downloader Sites Are Now Hiding Proxyware to Hijack Your Bandwidth |
https://securityonline.info/youtube-downloader-sites-are-now-hiding-proxyware-to-hijack-your-bandwidth/
|
| Aug. 23, 2025 |
Murky Panda hackers exploit cloud trust to hack downstream customers |
https://www.bleepingcomputer.com/news/security/murky-panda-hackers-exploit-cloud-trust-to-hack-downstream-customers/
|
| Aug. 23, 2025 |
APT36 hackers abuse Linux .desktop files to install malware in new attacks |
https://www.bleepingcomputer.com/news/security/apt36-hackers-abuse-linux-desktop-files-to-install-malware/
|
| Aug. 23, 2025 |
GrayAlpha Unmasked: New FIN7-Linked Infrastructure, PowerNet Loader, and Fake Update Attacks |
https://www.recordedfuture.com/research/grayalpha-uses-diverse-infection-vectors-deploy-powernet-loader-netsupport-rat
|
| Aug. 22, 2025 |
Fake Mac fixes trick users into installing new Shamos infostealer |
https://www.bleepingcomputer.com/news/security/fake-mac-fixes-trick-users-into-installing-new-shamos-infostealer/
|
| Aug. 22, 2025 |
Colt confirms customer data stolen as Warlock ransomware auctions files |
https://www.bleepingcomputer.com/news/security/colt-confirms-customer-data-stolen-as-warlock-ransomware-auctions-files/
|
| Aug. 22, 2025 |
Italian hotels breached for tens of thousands of scanned IDs |
https://www.malwarebytes.com/blog/news/2025/08/italian-hotels-breached-for-tens-of-thousands-of-scanned-ids
|
| Aug. 22, 2025 |
Malicious Go Package Steals Your SSH Credentials in a “Brute-Force” Scam |
https://securityonline.info/malicious-go-package-steals-your-ssh-credentials-in-a-brute-force-scam/
|
| Aug. 22, 2025 |
Analysis of TAG-140 Campaign and DRAT V2 Development Targeting Indian Government Organizations |
https://www.recordedfuture.com/research/drat-v2-updated-drat-emerges-tag-140s-arsenal
|
| Aug. 22, 2025 |
Submarine Cable Security at Risk Amid Geopolitical Tensions & Limited Repair Capabilities |
https://www.recordedfuture.com/research/submarine-cables-face-increasing-threats
|
| Aug. 22, 2025 |
US Extremists in 2025: Shift Toward Targeted Physical Threats | Recorded Future |
https://www.recordedfuture.com/research/us-violent-extremists-shifting-focus-targeted-physical-threats-2025
|
| Aug. 22, 2025 |
Inside DDoSia: NoName057(16)’s Pro-Russian DDoS Campaign Infrastructure |
https://www.recordedfuture.com/research/anatomy-of-ddosia
|
| Aug. 21, 2025 |
FBI warns of Russian hackers exploiting 7-year-old Cisco flaw |
https://www.bleepingcomputer.com/news/security/fbi-warns-of-russian-hackers-exploiting-cisco-flaw-in-critical-infrastructure-attacks/
|
| Aug. 21, 2025 |
Behind the Curtain: How Lumma Affiliates Operate |
https://www.recordedfuture.com/research/behind-the-curtain-how-lumma-affiliates-operate
|
| Aug. 21, 2025 |
SIM-Swapper, Scattered Spider Hacker Gets 10 Years |
https://krebsonsecurity.com/2025/08/sim-swapper-scattered-spider-hacker-gets-10-years/
|
| Aug. 21, 2025 |
Russians hacked US courts, say investigators |
https://www.malwarebytes.com/blog/news/2025/08/russians-hacked-us-courts-say-investigators
|
| Aug. 20, 2025 |
Ghost-Tapping and the Chinese Cybercriminal Retail Fraud Ecosystem |
https://www.recordedfuture.com/research/ghost-tapping-chinese-criminal-ecosystem
|
| Aug. 20, 2025 |
Netflix scammers target jobseekers to trick them into handing over their Facebook logins |
https://www.malwarebytes.com/blog/news/2025/08/netflix-scammers-target-jobseekers-to-trick-them-into-handing-over-their-facebook-logins
|
| Aug. 20, 2025 |
Tracking Candiru’s DevilsTongue Spyware in Multiple Countries |
https://www.recordedfuture.com/research/tracking-candirus-devilstongue-spyware
|
| Aug. 20, 2025 |
Intelligence-Driven Defense: Four Critical Ransomware Trends Organizations Must Address |
https://www.recordedfuture.com/blog/intelligence-driven-defense-four-critical-ransomware-trends-organizations-must-address
|
| Aug. 20, 2025 |
Ukraine claims to have hacked secrets from Russia’s newest nuclear submarine |
https://www.bitdefender.com/en-us/blog/hotforsecurity/ukraine-claims-to-have-hacked-secrets-from-russias-newest-nuclear-submarine
|
| Aug. 19, 2025 |
Spies in Your Skype: GodRAT Malware Uses Steganography to Target Financial Firms |
https://securityonline.info/spies-in-your-skype-godrat-malware-uses-steganography-to-target-financial-firms/
|
| Aug. 19, 2025 |
A ChatGPT App Is Hiding a Backdoor: Microsoft Exposes the PipeMagic Malware |
https://securityonline.info/a-chatgpt-app-is-hiding-a-backdoor-microsoft-exposes-the-pipemagic-malware/
|
| Aug. 19, 2025 |
XenoRAT malware campaign hits multiple embassies in South Korea |
https://www.bleepingcomputer.com/news/security/xenorat-malware-campaign-hits-multiple-embassies-in-south-korea/
|
| Aug. 19, 2025 |
Oregon Man Charged in ‘Rapper Bot’ DDoS Service |
https://krebsonsecurity.com/2025/08/oregon-man-charged-in-rapper-bot-ddos-service/
|
| Aug. 19, 2025 |
ERMAC Android malware source code leak exposes banking trojan infrastructure |
https://www.bleepingcomputer.com/news/security/ermac-android-malware-source-code-leak-exposes-banking-trojan-infrastructure/
|
| Aug. 19, 2025 |
Phishing Scam Alert: McAfee Uncovers a New Android Campaign Impersonating a Government Solar Program |
https://securityonline.info/phishing-scam-alert-mcafee-uncovers-a-new-android-campaign-impersonating-a-government-solar-program/
|
| Aug. 19, 2025 |
Scammers Unleash Flood of Slick Online Gaming Sites |
https://krebsonsecurity.com/2025/07/scammers-unleash-flood-of-slick-online-gaming-sites/
|
| Aug. 19, 2025 |
US reveals it seized $1 million worth of Bitcoin from Russian BlackSuit ransomware gang |
https://www.bitdefender.com/en-us/blog/hotforsecurity/us-reveals-it-seized-1-million-worth-of-bitcoin-from-russian-blacksuit-ransomware-gang
|
| Aug. 19, 2025 |
Phishers Target Aviation Execs to Scam Customers |
https://krebsonsecurity.com/2025/07/phishers-target-aviation-execs-to-scam-customers/
|
| Aug. 19, 2025 |
Trojans Embedded in .svg Files |
https://www.schneier.com/blog/archives/2025/08/trojans-embedded-in-svg-files.html
|
| Aug. 19, 2025 |
Who Got Arrested in the Raid on the XSS Crime Forum? |
https://krebsonsecurity.com/2025/08/who-got-arrested-in-the-raid-on-the-xss-crime-forum/
|
| Aug. 19, 2025 |
Pharma firm Inotiv says ransomware attack impacted operations |
https://www.bleepingcomputer.com/news/security/pharma-firm-inotiv-says-ransomware-attack-impacted-operations/
|
| Aug. 19, 2025 |
UK Arrests Four in ‘Scattered Spider’ Ransom Group |
https://krebsonsecurity.com/2025/07/uk-charges-four-in-scattered-spider-ransom-group/
|
| Aug. 19, 2025 |
Poor Passwords Tattle on AI Hiring Bot Maker Paradox.ai |
https://krebsonsecurity.com/2025/07/poor-passwords-tattle-on-ai-hiring-bot-maker-paradox-ai/
|
| Aug. 19, 2025 |
Free decryptor for victims of Phobos ransomware released |
https://www.fortra.com/blog/free-decryptor-victims-phobos-ransomware-released
|
| Aug. 19, 2025 |
PipeMagic Returns: Kaspersky Uncovers Evolving Backdoor Linked to CVE-2025-29824 Exploits |
https://securityonline.info/pipemagic-returns-kaspersky-uncovers-evolving-backdoor-linked-to-cve-2025-29824-exploits/
|
| Aug. 18, 2025 |
Mobile Phishers Target Brokerage Accounts in ‘Ramp and Dump’ Cashout Scheme |
https://krebsonsecurity.com/2025/08/mobile-phishers-target-brokerage-accounts-in-ramp-and-dump-cashout-scheme/
|
| Aug. 18, 2025 |
From Chrome renderer code exec to kernel with MSG_OOB |
https://www.reddit.com/r/netsec/comments/1mptuxa/from_chrome_renderer_code_exec_to_kernel_with_msg/
|
| Aug. 18, 2025 |
“Vibe Hacking”: Abusing Developer Trust in Cursor and VS Code Remote Development |
https://www.reddit.com/r/netsec/comments/1mtpvuu/vibe_hacking_abusing_developer_trust_in_cursor/
|
| Aug. 18, 2025 |
HR giant Workday discloses data breach after Salesforce attack |
https://www.bleepingcomputer.com/news/security/hr-giant-workday-discloses-data-breach-amid-salesforce-attacks/
|
| June 20, 2025 |
Massive Data Leak: Hacker Allegedly Selling 16 Billion Login Credentials from Major Tech Giants |
https://securityonline.info/massive-data-leak-hacker-allegedly-selling-16-billion-login-credentials-from-major-tech-giants/
|
| April 18, 2025 |
ASUS warns of critical auth bypass flaw in routers using AiCloud |
https://www.bleepingcomputer.com/news/security/asus-warns-of-critical-auth-bypass-flaw-in-routers-using-aicloud/
|
| April 18, 2025 |
Interlock ransomware gang pushes fake IT tools in ClickFix attacks |
https://www.bleepingcomputer.com/news/security/interlock-ransomware-gang-pushes-fake-it-tools-in-clickfix-attacks/
|
| April 10, 2025 |
Russian hackers attack Western military mission using malicious drive |
https://www.bleepingcomputer.com/news/security/russian-hackers-attack-western-military-mission-using-malicious-drive/
|
| April 10, 2025 |
Oracle says "obsolete servers" hacked, denies cloud breach |
https://www.bleepingcomputer.com/news/security/oracle-says-obsolete-servers-hacked-denies-cloud-breach/
|
| April 10, 2025 |
Hackers target SSRF bugs in EC2-hosted sites to steal AWS credentials |
https://www.bleepingcomputer.com/news/security/hackers-target-ssrf-bugs-in-ec2-hosted-sites-to-steal-aws-credentials/
|
| April 7, 2025 |
E-ZPass toll payment texts return in massive phishing wave |
https://www.bleepingcomputer.com/news/security/toll-payment-text-scam-returns-in-massive-phishing-wave/
|
| April 7, 2025 |
Carding tool abusing WooCommerce API downloaded 34K times on PyPI |
https://www.bleepingcomputer.com/news/security/carding-tool-abusing-woocommerce-api-downloaded-34k-times-on-pypi/
|
| March 6, 2025 |
North Korean IT Workers Pose as Developers on GitHub to Infiltrate Global Companies |
https://securityonline.info/north-korean-it-workers-pose-as-developers-on-github-to-infiltrate-global-companies/
|
| March 6, 2025 |
Russian Cybercriminals Impersonate EFF in Targeted Attack on Albion Online Players |
https://securityonline.info/russian-cybercriminals-impersonate-eff-in-targeted-attack-on-albion-online-players/
|
| March 6, 2025 |
B2B Business Email Compromise: A Sophisticated Scheme Exploiting Trusted Relationships |
https://securityonline.info/b2b-business-email-compromise-a-sophisticated-scheme-exploiting-trusted-relationships/
|
| March 6, 2025 |
Trojaned AI Tool Leads to Disney Hack |
https://www.schneier.com/blog/archives/2025/03/trojaned-ai-tool-leads-to-disney-hack.html
|
| Feb. 23, 2025 |
RANsacked: Over 100 Security Flaws Found in LTE/5G Network Implementations |
https://www.reddit.com/r/netsec/comments/1itt6y4/ransacked_over_100_security_flaws_found_in_lte5g/
|
| Feb. 19, 2025 |
CISA and FBI: Ghost ransomware breached orgs in 70 countries |
https://www.bleepingcomputer.com/news/security/cisa-and-fbi-ghost-ransomware-breached-orgs-in-70-countries/
|
| Feb. 15, 2025 |
whoAMI attacks give hackers code execution on Amazon EC2 instances |
https://www.bleepingcomputer.com/news/security/whoami-attacks-give-hackers-code-execution-on-amazon-ec2-instances/
|
| Feb. 15, 2025 |
Microsoft: Hackers steal emails in device code phishing attacks |
https://www.bleepingcomputer.com/news/security/microsoft-hackers-steal-emails-in-device-code-phishing-attacks/
|
| Feb. 15, 2025 |
Chinese hackers breach more US telecoms via unpatched Cisco routers |
https://www.bleepingcomputer.com/news/security/chinese-hackers-breach-more-us-telecoms-via-unpatched-cisco-routers/
|
| Jan. 25, 2025 |
Hackers use Windows RID hijacking to create hidden admin account |
https://www.bleepingcomputer.com/news/security/hackers-use-windows-rid-hijacking-to-create-hidden-admin-account/
|
| Jan. 23, 2025 |
Telegram captcha tricks you into running malicious PowerShell scripts |
https://www.bleepingcomputer.com/news/security/telegram-captcha-tricks-you-into-running-malicious-powershell-scripts/
|
| Jan. 23, 2025 |
Critical zero-days impact premium WordPress real estate plugins |
https://www.bleepingcomputer.com/news/security/critical-zero-days-impact-premium-wordpress-real-estate-plugins/
|
| Jan. 23, 2025 |
IPany VPN breached in supply-chain attack to push custom malware |
https://www.bleepingcomputer.com/news/security/ipany-vpn-breached-in-supply-chain-attack-to-push-custom-malware/
|
| Jan. 22, 2025 |
CVE-2024-12857: Critical Flaw in AdForest Theme Allows Complete Account Takeover, Thousands of Sites at Risk |
https://securityonline.info/cve-2024-12857-critical-flaw-in-adforest-theme-allows-complete-account-takeover-thousands-of-sites-at-risk/
|
| Jan. 22, 2025 |
400,000+ Systems Infected: DigitalPulse Proxyware Returns with New Tricks |
https://securityonline.info/400000-systems-infected-digitalpulse-proxyware-returns-with-new-tricks/
|
| Jan. 22, 2025 |
From Dream Jobs to Dangerous Passwords: Lazarus Group’s LinkedIn Attacks |
https://securityonline.info/from-dream-jobs-to-dangerous-passwords-lazarus-groups-linkedin-attacks/
|
| Dec. 3, 2024 |
Cisco Confirms Active Exploitation of Decade-Old WebVPN Vulnerability in ASA Software |
https://securityonline.info/cisco-confirms-active-exploitation-of-decade-old-webvpn-vulnerability-in-asa-software/
|
| Dec. 2, 2024 |
Zero-Day Attack Alert: Corrupted Files Weaponized in New Attacks |
https://securityonline.info/zero-day-attack-alert-corrupted-files-weaponized-in-new-attacks/
|
| Dec. 2, 2024 |
Mystery google.com certificate issued by Brazilian CA |
https://www.reddit.com/r/netsec/comments/1h4h1iy/mystery_googlecom_certificate_issued_by_brazilian/
|
| Nov. 29, 2024 |
Malicious npm Packages Threaten Crypto Developers: Keylogging and Wallet Theft Revealed |
https://securityonline.info/malicious-npm-packages-threaten-crypto-developers-keylogging-and-wallet-theft-revealed/
|
| Nov. 29, 2024 |
Beyond FUD Links: Rockstar PaaS Kit Exploits Trusted Platforms for Phishing |
https://securityonline.info/beyond-fud-links-rockstar-paas-kit-exploits-trusted-platforms-for-phishing/
|
| Nov. 29, 2024 |
Godot Engine Compromised: Malware Distributed via GodLoader |
https://securityonline.info/godot-engine-compromised-malware-distributed-via-godloader/
|
| Nov. 21, 2024 |
PDFFlex: Analyzing PUA Persistence and Evasion Techniques |
https://securityonline.info/pdfflex-analyzing-pua-persistence-and-evasion-techniques/
|
| Nov. 21, 2024 |
Researchers Uncover XenoRAT’s New Tactics Leveraging Excel XLL Files and Advanced Obfuscation |
https://securityonline.info/researchers-uncover-xenorats-new-tactics-leveraging-excel-xll-files-and-advanced-obfuscation/
|
| Nov. 12, 2024 |
North Korean hackers create Flutter apps to bypass macOS security |
https://www.bleepingcomputer.com/news/security/north-korean-hackers-create-flutter-apps-to-bypass-macos-security/
|
| Nov. 12, 2024 |
HIBP notifies 57 million people of Hot Topic data breach |
https://www.bleepingcomputer.com/news/security/hibp-notifies-57-million-people-of-hot-topic-data-breach/
|
| Sept. 20, 2024 |
This Windows PowerShell Phish Has Scary Potential |
https://krebsonsecurity.com/2024/09/this-windows-powershell-phish-has-scary-potential/
|
| Sept. 9, 2024 |
Akira Ransomware Exploits SonicWall SSLVPN Flaw (CVE-2024-40766) |
https://securityonline.info/akira-ransomware-exploits-sonicwall-sslvpn-flaw-cve-2024-40766/
|
| Sept. 9, 2024 |
Fog Ransomware Group Shifts Focus: Financial Sector Now in Crosshairs |
https://securityonline.info/fog-ransomware-group-shifts-focus-financial-sector-now-in-crosshairs/
|
| Sept. 9, 2024 |
Sextortion Scams Now Include Photos of Your Home |
https://krebsonsecurity.com/2024/09/sextortion-scams-now-include-photos-of-your-home/
|
| Aug. 31, 2024 |
Local Networks Go Global When Domain Names Collide |
https://krebsonsecurity.com/2024/08/local-networks-go-global-when-domain-names-collide/
|
| Aug. 31, 2024 |
When Get-Out-The-Vote Efforts Look Like Phishing |
https://krebsonsecurity.com/2024/08/when-get-out-the-vote-efforts-look-like-phishing/
|
| Aug. 23, 2024 |
Google fixes ninth Chrome zero-day tagged as exploited this year |
https://www.bleepingcomputer.com/news/security/google-fixes-ninth-actively-exploited-chrome-zero-day-in-2024/
|
| Aug. 23, 2024 |
Hackers steal banking creds from iOS, Android users via PWA apps |
https://www.bleepingcomputer.com/news/security/hackers-steal-banking-creds-from-ios-android-users-via-pwa-apps/
|
| Aug. 23, 2024 |
New NGate Android malware uses NFC chip to steal credit card data |
https://www.bleepingcomputer.com/news/security/new-ngate-android-malware-uses-nfc-chip-to-steal-credit-card-data/
|
| Aug. 8, 2024 |
ADT confirms data breach after customer info leaked on hacking forum |
https://www.bleepingcomputer.com/news/security/adt-confirms-data-breach-after-customer-info-leaked-on-hacking-forum/
|
| Aug. 8, 2024 |
Windows Update downgrade attack "unpatches" fully-updated systems |
https://www.bleepingcomputer.com/news/microsoft/windows-update-downgrade-attack-unpatches-fully-updated-systems/
|
| Aug. 7, 2024 |
Data Centers Alert: AMD Addresses SEV-SNP Vulnerabilities in EPYC Processors |
https://securityonline.info/data-centers-alert-amd-addresses-sev-snp-vulnerabilities-in-epyc-processors/
|
| Aug. 3, 2024 |
20,000+ Ubiquiti Devices Exposed: Amplification Attacks & Data Leaks |
https://securityonline.info/20000-ubiquiti-devices-exposed-amplification-attacks-data-leaks/
|
| Aug. 3, 2024 |
CVE-2024-7339: DVR Vulnerability Exposes Over 400,000 Devices to Hackers |
https://securityonline.info/cve-2024-7339-dvr-vulnerability-exposes-over-400000-devices-to-hackers/
|
| Aug. 3, 2024 |
Malicious PyPI Packages Expose User Credentials |
https://securityonline.info/malicious-pypi-packages-expose-user-credentials/
|
| July 26, 2024 |
PKfail Secure Boot bypass lets attackers install UEFI malware |
https://www.bleepingcomputer.com/news/security/pkfail-secure-boot-bypass-lets-attackers-install-uefi-malware/
|
| July 20, 2024 |
China-Linked GhostEmperor Resurfaces: Enhanced Demodex Rootkit Targets Southeast Asia |
https://securityonline.info/china-linked-ghostemperor-resurfaces-enhanced-demodex-rootkit-targets-southeast-asia/
|
| July 20, 2024 |
NHS England Issues Cyber Alert for Exploited CVE-2023-6548 Vulnerability in NetScaler Devices |
https://securityonline.info/nhs-england-issues-cyber-alert-for-exploited-cve-2023-6548-vulnerability-in-netscaler-devices/
|
| July 17, 2024 |
Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks |
https://krebsonsecurity.com/2024/07/researchers-weak-security-defaults-enabled-squarespace-domains-hijacks/
|
| July 17, 2024 |
Microsoft links Scattered Spider hackers to Qilin ransomware attacks |
https://www.bleepingcomputer.com/news/security/microsoft-links-scattered-spider-hackers-to-qilin-ransomware-attacks/
|
| July 17, 2024 |
Rite Aid says June data breach impacts 2.2 million people |
https://www.bleepingcomputer.com/news/security/rite-aid-says-june-data-breach-impacts-22-million-people/
|
| July 17, 2024 |
Email addresses of 15 million Trello users leaked on hacking forum |
https://www.bleepingcomputer.com/news/security/email-addresses-of-15-million-trello-users-leaked-on-hacking-forum/
|
| July 17, 2024 |
Crooks Steal Phone, SMS Records for Nearly All AT&T Customers |
https://krebsonsecurity.com/2024/07/hackers-steal-phone-sms-records-for-nearly-all-att-customers/
|
| July 9, 2024 |
Chinese APT40 hackers hijack SOHO routers to launch attacks |
https://www.bleepingcomputer.com/news/security/chinese-apt40-hackers-hijack-soho-routers-to-launch-attacks/
|
| July 9, 2024 |
Hackers target WordPress calendar plugin used by 150,000 sites |
https://www.bleepingcomputer.com/news/security/hackers-target-wordpress-calendar-plugin-used-by-150-000-sites/
|
| July 9, 2024 |
Fujitsu confirms customer data exposed in March cyberattack |
https://www.bleepingcomputer.com/news/security/fujitsu-confirms-customer-data-exposed-in-march-cyberattack/
|
| July 8, 2024 |
Universal Code Execution by Chaining Messages in Browser Extensions |
https://www.reddit.com/r/netsec/comments/1dxj0wh/universal_code_execution_by_chaining_messages_in/
|
| July 8, 2024 |
Cybercriminals Escalate Attacks Exploiting Microsoft SmartScreen Flaw (CVE-2024-21412) |
https://securityonline.info/cybercriminals-escalate-attacks-exploiting-microsoft-smartscreen-flaw-cve-2024-21412/
|
| July 8, 2024 |
Volcano Demon: New Ransomware Gang Targets Windows & Linux |
https://securityonline.info/volcano-demon-new-ransomware-gang-targets-windows-linux/
|
| June 30, 2024 |
InnoLoader Malware Evades Detection Posing as Cracked Software |
https://securityonline.info/innoloader-malware-evades-detection-posing-as-cracked-software/
|
| June 30, 2024 |
Avaya IP Office Users Urged to Patch Critical Flaws (CVE-2024-4196 & CVE-2024-4197) |
https://securityonline.info/avaya-ip-office-users-urged-to-patch-critical-flaws-cve-2024-4196-cve-2024-4197/
|
| June 30, 2024 |
TeamViewer Confirms Cyberattack by Notorious APT Group |
https://securityonline.info/teamviewer-confirms-cyberattack-by-notorious-apt-group/
|
| June 30, 2024 |
MerkSpy Spyware Campaign Exploits Microsoft Office Flaw |
https://securityonline.info/merkspy-spyware-campaign-exploits-microsoft-office-flaw/
|
| June 23, 2024 |
PrestaShop Sites Under Attack via Facebook Module Vulnerability (CVE-2024-36680) |
https://securityonline.info/prestashop-sites-under-attack-via-facebook-module-vulnerability-cve-2024-36680/
|
| June 22, 2024 |
Ratel RAT targets outdated Android phones in ransomware attacks |
https://www.bleepingcomputer.com/news/security/ratel-rat-targets-outdated-android-phones-in-ransomware-attacks/
|
| June 22, 2024 |
CDK Global outage caused by BlackSuit ransomware attack |
https://www.bleepingcomputer.com/news/security/cdk-global-outage-caused-by-blacksuit-ransomware-attack/
|
| June 21, 2024 |
UNC3886 hackers use Linux rootkits to hide on VMware ESXi VMs |
https://www.bleepingcomputer.com/news/security/unc3886-hackers-use-linux-rootkits-to-hide-on-vmware-esxi-vms/
|
| June 21, 2024 |
BokuLoader - A Proof-Of-Concept Cobalt Strike Reflective Loader Which Aims To Recreate, Integrate, And Enhance Cobalt Strike's Evasion Features! |
http://www.kitploit.com/2024/06/bokuloader-proof-of-concept-cobalt.html
|
| June 21, 2024 |
Linux version of RansomHub ransomware targets VMware ESXi VMs |
https://www.bleepingcomputer.com/news/security/linux-version-of-ransomhub-ransomware-targets-vmware-esxi-vms/
|
| June 13, 2024 |
Bondnet Threat Actor Still Active, Using Bots as C2 Servers |
https://securityonline.info/bondnet-threat-actor-still-active-using-bots-as-c2-servers/
|
| June 11, 2024 |
PHP Vulnerability (CVE-2024-4577) Actively Exploited in TellYouThePass Ransomware Attacks |
https://securityonline.info/php-vulnerability-cve-2024-4577-actively-exploited-in-tellyouthepass-ransomware-attacks/
|
| June 6, 2024 |
New Gitloker attacks wipe GitHub repos in extortion scheme |
https://www.bleepingcomputer.com/news/security/new-gitloker-attacks-wipe-github-repos-in-extortion-scheme/
|
| June 6, 2024 |
Club Penguin fans breached Disney Confluence server, stole 2.5GB of data |
https://www.bleepingcomputer.com/news/security/club-penguin-fans-breached-disney-confluence-server-stole-25gb-of-data/
|
| June 6, 2024 |
Check-in terminals used by thousands of hotels leak guest info |
https://www.bleepingcomputer.com/news/security/check-in-terminals-used-by-thousands-of-hotels-leak-guest-info/
|
| June 6, 2024 |
New Fog ransomware targets US education sector via breached VPNs |
https://www.bleepingcomputer.com/news/security/new-fog-ransomware-targets-us-education-sector-via-breached-vpns/
|
| June 3, 2024 |
CVE-2024-29415: Popular Node.js Package ‘node-ip’ Exposes Millions to Potential SSRF Attacks |
https://securityonline.info/cve-2024-29415-popular-node-js-package-node-ip-exposes-millions-to-potential-ssrf-attacks/
|
| June 3, 2024 |
Hugging Face Spaces Platform Hit by Unauthorized Access |
https://securityonline.info/hugging-face-spaces-platform-hit-by-unauthorized-access/
|
| May 16, 2024 |
Threat actors misusing Quick Assist in social engineering attacks leading to ransomware |
https://www.reddit.com/r/netsec/comments/1csqem5/threat_actors_misusing_quick_assist_in_social/
|
| May 9, 2024 |
Dell warns of data breach, 49 million customers allegedly affected |
https://www.bleepingcomputer.com/news/security/dell-warns-of-data-breach-49-million-customers-allegedly-affected/
|
| May 9, 2024 |
Crickets from Chirp Systems in Smart Lock Key Leak |
https://krebsonsecurity.com/2024/04/crickets-from-chirp-systems-in-smart-lock-key-leak/
|
| May 9, 2024 |
Who Stole 3.6M Tax Records from South Carolina? |
https://krebsonsecurity.com/2024/04/who-stole-3-6m-tax-records-from-south-carolina/
|
| May 9, 2024 |
City of Wichita breach claimed by LockBit ransomware gang |
https://www.bleepingcomputer.com/news/security/city-of-wichita-breach-claimed-by-lockbit-ransomware-gang/
|
| May 9, 2024 |
FBI warns of gift card fraud ring targeting retail companies |
https://www.bleepingcomputer.com/news/security/fbi-warns-of-gift-card-fraud-ring-targeting-retail-companies/
|
| May 9, 2024 |
Ascension healthcare takes systems offline after cyberattack |
https://www.bleepingcomputer.com/news/security/ascension-healthcare-takes-systems-offline-after-cyberattack/
|
| May 9, 2024 |
University System of Georgia: 800K exposed in 2023 MOVEit attack |
https://www.bleepingcomputer.com/news/security/university-system-of-georgia-800k-exposed-in-2023-moveit-attack/
|
| May 9, 2024 |
Zscaler takes "test environment" offline after rumors of a breach |
https://www.bleepingcomputer.com/news/security/zscaler-takes-test-environment-offline-after-rumors-of-a-breach/
|
| May 9, 2024 |
Citrix warns admins to manually mitigate PuTTY SSH client bug |
https://www.bleepingcomputer.com/news/security/citrix-warns-admins-to-manually-mitigate-putty-ssh-client-bug/
|
| May 5, 2024 |
Android bug leaks DNS queries even when VPN kill switch is enabled |
https://www.bleepingcomputer.com/news/security/android-bug-leaks-dns-queries-even-when-vpn-kill-switch-is-enabled/
|
| May 5, 2024 |
CISA urges software devs to weed out path traversal vulnerabilities |
https://www.bleepingcomputer.com/news/security/cisa-urges-software-devs-to-weed-out-path-traversal-vulnerabilities/
|
| May 5, 2024 |
NSA warns of North Korean hackers exploiting weak DMARC email policies |
https://www.bleepingcomputer.com/news/security/nsa-warns-of-north-korean-hackers-exploiting-weak-dmarc-email-policies/
|
| May 4, 2024 |
Nearly 20% of Docker Hub Repositories were used to spread malware & phishing scams |
https://www.reddit.com/r/netsec/comments/1cgtztj/nearly_20_of_docker_hub_repositories_were_used_to/
|
| May 2, 2024 |
“Goldoon” Botnet Exploits Unpatched D-Link Devices |
https://securityonline.info/goldoon-botnet-exploits-unpatched-d-link-devices/
|
| May 2, 2024 |
Adload Adware Quickly Evades Apple’s Expanded XProtect |
https://securityonline.info/adload-adware-quickly-evades-apples-expanded-xprotect/
|
| May 2, 2024 |
New Cuttlefish Malware Evades Detection, Targets SOHO Routers |
https://securityonline.info/new-cuttlefish-malware-evades-detection-targets-soho-routers/
|
| April 30, 2024 |
Millions of Docker repos found pushing malware, phishing sites |
https://www.bleepingcomputer.com/news/security/millions-of-docker-repos-found-pushing-malware-phishing-sites/
|
| April 30, 2024 |
Stealthy ‘DarkGate’ Trojan Abuses AutoHotkey, Evades Defender |
https://securityonline.info/stealthy-darkgate-trojan-abuses-autohotkey-evades-defender/
|
| April 29, 2024 |
FROZEN#SHADOW Campaign: The Stealthy Advance of SSLoad Malware and Cobalt Strike |
https://securityonline.info/frozenshadow-campaign-the-stealthy-advance-of-ssload-malware-and-cobalt-strike/
|
| April 29, 2024 |
US Post Office phishing sites get as much traffic as the real one |
https://www.bleepingcomputer.com/news/security/us-post-office-phishing-sites-get-as-much-traffic-as-the-real-one/
|
| April 28, 2024 |
Fake job interviews target developers with new Python backdoor |
https://www.bleepingcomputer.com/news/security/fake-job-interviews-target-developers-with-new-python-backdoor/
|
| April 28, 2024 |
LA County Health Services: Patients' data exposed in phishing attack |
https://www.bleepingcomputer.com/news/security/la-county-health-services-thousands-of-patients-data-exposed-in-email-breach/
|
| April 28, 2024 |
Kaiser Permanente: Data breach may impact 13.4 million patients |
https://www.bleepingcomputer.com/news/security/kaiser-permanente-data-breach-may-impact-134-million-patients/
|
| April 28, 2024 |
Okta warns of "unprecedented" credential stuffing attacks on customers |
https://www.bleepingcomputer.com/news/security/okta-warns-of-unprecedented-credential-stuffing-attacks-on-customers/
|
| April 26, 2024 |
Iranian Hacker Group MuddyWater Abuses Legitimate Atera Software to Target Global Organizations |
https://securityonline.info/iranian-hacker-group-muddywater-abuses-legitimate-atera-software-to-target-global-organizations/
|
| April 26, 2024 |
Beware of Search Results: Hackers Using Fake Websites to Spread Malware |
https://securityonline.info/beware-of-search-results-hackers-using-fake-websites-to-spread-malware/
|
| April 26, 2024 |
AI Powers a Phishing Frenzy – Zscaler Report Warns of Unprecedented Threat Wave |
https://securityonline.info/ai-powers-a-phishing-frenzy-zscaler-report-warns-of-unprecedented-threat-wave/
|
| April 26, 2024 |
Hackers Employ Advanced Fileless Attack to Implant AgentTesla Malware |
https://securityonline.info/hackers-employ-advanced-fileless-attack-to-implant-agenttesla-malware/
|
| April 26, 2024 |
Alert: “Brokewell” Malware – New Threat Targets Bank Users with Remote Device Takeover |
https://securityonline.info/alert-brokewell-malware-new-threat-targets-bank-users-with-remote-device-takeover/
|
| April 26, 2024 |
Hanwha Vision Announces Critical Security Updates for NVR and DVR Models |
https://securityonline.info/hanwha-vision-announces-critical-security-updates-for-nvr-and-dvr-models/
|
| April 26, 2024 |
Postman users are exposing Thousands of live Passwords/API keys |
https://www.reddit.com/r/netsec/comments/1cd2s6f/postman_users_are_exposing_thousands_of_live/
|
| April 24, 2024 |
Hackers hijack antivirus updates to drop GuptiMiner malware |
https://www.bleepingcomputer.com/news/security/hackers-hijack-antivirus-updates-to-drop-guptiminer-malware/
|
| April 24, 2024 |
Nation-State Threat Actors Renew Publications to npm |
https://www.reddit.com/r/netsec/comments/1cbmeit/nationstate_threat_actors_renew_publications_to/
|
| April 24, 2024 |
SAP Threat Modeling Tool - Open Source Software |
https://www.reddit.com/r/netsec/comments/1cbqqp1/sap_threat_modeling_tool_open_source_software/
|
| April 23, 2024 |
ToddyCat: Unveiling the Stealthy APT Group Targeting Asia-Pacific Governments |
https://securityonline.info/toddycat-unveiling-the-stealthy-apt-group-targeting-asia-pacific-governments/
|
| April 23, 2024 |
Sharp Stealer: New Malware Targets Gamers’ Accounts and Online Identities |
https://securityonline.info/sharp-stealer-new-malware-targets-gamers-accounts-and-online-identities/
|
| April 23, 2024 |
Russia-Linked Hackers Exploit Windows Zero-Day, Deploy “GooseEgg” to Hijack Networks |
https://securityonline.info/russia-linked-hackers-exploit-windows-zero-day-deploy-gooseegg-to-hijack-networks/
|
| April 22, 2024 |
Russian Sandworm hackers targeted 20 critical orgs in Ukraine |
https://www.bleepingcomputer.com/news/security/russian-sandworm-hackers-targeted-20-critical-orgs-in-ukraine/
|
| April 22, 2024 |
GitLab affected by GitHub-style CDN flaw allowing malware hosting |
https://www.bleepingcomputer.com/news/security/gitlab-affected-by-github-style-cdn-flaw-allowing-malware-hosting/
|
| April 22, 2024 |
Microsoft: APT28 hackers exploit Windows flaw reported by NSA |
https://www.bleepingcomputer.com/news/security/microsoft-apt28-hackers-exploit-windows-flaw-reported-by-nsa/
|
| April 18, 2024 |
“All Your Secrets Are Belong To Us” — A Delinea Secret Server AuthN/AuthZ Bypass |
https://www.reddit.com/r/netsec/comments/1c5h4h1/all_your_secrets_are_belong_to_us_a_delinea/
|
| April 17, 2024 |
Multiple botnets exploiting one-year-old TP-Link flaw to hack routers |
https://www.bleepingcomputer.com/news/security/multiple-botnets-exploiting-one-year-old-tp-link-flaw-to-hack-routers/
|
| April 17, 2024 |
Vulnerability in Popular VPN Software Could Lead to Crashes and Service Disruptions |
https://securityonline.info/vulnerability-in-popular-vpn-software-could-lead-to-crashes-and-service-disruptions/
|
| April 17, 2024 |
T-Mobile, Verizon workers get texts offering $300 for SIM swaps |
https://www.bleepingcomputer.com/news/security/t-mobile-verizon-workers-get-texts-offering-300-for-sim-swaps/
|
| April 16, 2024 |
Cisco warns of large-scale brute-force attacks against VPN services |
https://www.bleepingcomputer.com/news/security/cisco-warns-of-large-scale-brute-force-attacks-against-vpn-services/
|
| April 14, 2024 |
GitHub Search Sabotaged: Malware Hidden in Popular Repositories |
https://securityonline.info/github-search-sabotaged-malware-hidden-in-popular-repositories/
|
| April 14, 2024 |
Thread Hijacking: Phishes That Prey on Your Curiosity |
https://krebsonsecurity.com/2024/03/thread-hijacking-phishes-that-prey-on-your-curiosity/
|
| April 14, 2024 |
Several vulnerabilities in LG WebOS. Chained, lead to RCE. |
https://www.reddit.com/r/netsec/comments/1c22m7x/several_vulnerabilities_in_lg_webos_chained_lead/
|
| April 14, 2024 |
Apple Warns Users of Targeted Spyware Attacks – Here’s How to Stay Safe |
https://securityonline.info/apple-warns-users-of-targeted-spyware-attacks-heres-how-to-stay-safe/
|
| April 14, 2024 |
“Coyote” Trojan Strikes Brazil’s Banks, Experts Warn of Next-Gen Threat |
https://securityonline.info/coyote-trojan-strikes-brazils-banks-experts-warn-of-next-gen-threat/
|
| April 14, 2024 |
GraphStrike: Cobalt Strike HTTPS beaconing over Microsoft Graph API |
https://securityonline.info/graphstrike-cobalt-strike-https-beaconing-over-microsoft-graph-api/
|
| April 14, 2024 |
Roku warns 576,000 accounts hacked in new credential stuffing attacks |
https://www.bleepingcomputer.com/news/security/roku-warns-576-000-accounts-hacked-in-new-credential-stuffing-attacks/
|
| April 14, 2024 |
Telegram fixes Windows app zero-day used to launch Python scripts |
https://www.bleepingcomputer.com/news/security/telegram-fixes-windows-app-zero-day-used-to-launch-python-scripts/
|
| April 14, 2024 |
Palo Alto Networks zero-day exploited since March to backdoor firewalls |
https://www.bleepingcomputer.com/news/security/palo-alto-networks-zero-day-exploited-since-march-to-backdoor-firewalls/
|
| April 14, 2024 |
Hacker claims Giant Tiger data breach, leaks 2.8M records online |
https://www.bleepingcomputer.com/news/security/hacker-claims-giant-tiger-data-breach-leaks-28m-records-online/
|
| Feb. 29, 2024 |
Lazarus Group Suspected in Telegram Phishing Attacks on Investors |
https://securityonline.info/lazarus-group-suspected-in-telegram-phishing-attacks-on-investors/
|
| Feb. 29, 2024 |
Rhysida ransomware wants $3.6 million for children’s stolen data |
https://www.bleepingcomputer.com/news/security/rhysida-ransomware-wants-36-million-for-childrens-stolen-data/
|
| Feb. 29, 2024 |
Malicious AI models on Hugging Face backdoor users’ machines |
https://www.bleepingcomputer.com/news/security/malicious-ai-models-on-hugging-face-backdoor-users-machines/
|
| Feb. 11, 2024 |
Raspberry Robin Keeps Riding The Wave Of Endless 1-days |
https://research.checkpoint.com/2024/raspberry-robin-keeps-riding-the-wave-of-endless-1-days/
|
| Feb. 11, 2024 |
Chinese Espionage Group UNC3886 Found Exploiting CVE-2023-34048 Since Late 2021 |
https://www.mandiant.com/resources/blog/chinese-vmware-exploitation-since-2021
|
| Feb. 10, 2024 |
MacOS data exfiltration malware poses as an update for Visual Studio code editor. |
https://www.darkreading.com/threat-intelligence/macos-targeted-by-new-backdoor-linked-to-alphv-ransomware
|
| Feb. 7, 2024 |
Critical vulnerability affecting most Linux distros allows for bootkits |
https://arstechnica.com/security/2024/02/critical-vulnerability-affecting-most-linux-distros-allows-for-bootkits/
|
| Dec. 28, 2023 |
LogoFAIL attack: using image files to attack computers |
https://www.kaspersky.com/blog/logofail-uefi-vulnerabilities/50160/
|
| Dec. 21, 2023 |
Double Extortion Attack Analysis |
https://www.reliaquest.com/blog/double-extortion-attack-analysis/
|
| Dec. 11, 2023 |
Unmasking the Enigma: A Historical Dive into the World of PlugX Malware |
https://www.splunk.com/en_us/blog/security/unmasking-the-enigma-a-historical-dive-into-the-world-of-plugx-malware.html
|
| Dec. 1, 2023 |
Deep Analysis of Vidar Stealer |
https://m4lcode.github.io/malware%20analysis/vidar/
|
| Nov. 29, 2023 |
Ransomware gangs and Living Off the Land (LOTL) attacks: A deep dive |
https://www.malwarebytes.com/blog/business/2023/11/ransomware-gangs-and-living-off-the-land-lotl-attacks-a-deep-dive/amp
|
| Nov. 24, 2023 |
GootBot – Gootloader’s new approach to post-exploitation |
https://securityintelligence.com/x-force/gootbot-gootloaders-new-approach-to-post-exploitation/
|
| Nov. 21, 2023 |
DarkGate and Pikabot malware emerge as Qakbot’s successors |
https://www.bleepingcomputer.com/news/security/darkgate-and-pikabot-malware-emerge-as-qakbots-successors/#google_vignette
|
| Nov. 15, 2023 |
Opensea (Seaport) Exploit Details: Check if your address is affected |
https://revoketokens.io/exploits/opensea-11-14/
|
| Nov. 9, 2023 |
Sandworm Disrupts Power in Ukraine Using a Novel Attack Against Operational Technology |
https://www.mandiant.com/resources/blog/sandworm-disrupts-power-ukraine-operational-technology
|
| Oct. 27, 2023 |
Hackers can force iOS and macOS browsers to divulge passwords and much more |
https://arstechnica.com/security/2023/10/hackers-can-force-ios-and-macos-browsers-to-divulge-passwords-and-a-whole-lot-more/
|
| Oct. 21, 2023 |
Hackers Stole Access Tokens from Okta’s Support Unit |
https://krebsonsecurity.com/2023/10/hackers-stole-access-tokens-from-oktas-support-unit/
|
| Oct. 18, 2023 |
Security Vulnerabilities in CasaOS |
https://www.sonarsource.com/blog/security-vulnerabilities-in-casaos/
|
| Oct. 18, 2023 |
Active exploitation of Cisco IOS XE Software Web Management User Interface vulnerability |
https://blog.talosintelligence.com/active-exploitation-of-cisco-ios-xe-software/
|
| Oct. 10, 2023 |
CVE-2023-22515 - Broken Access Control Vulnerability in Confluence Data Center and Server |
https://confluence.atlassian.com/security/cve-2023-22515-privilege-escalation-vulnerability-in-confluence-data-center-and-server-1295682276.html
|
| Oct. 6, 2023 |
MGM Resorts ransomware attack led to $100 million loss, data theft |
https://www.bleepingcomputer.com/news/security/mgm-resorts-ransomware-attack-led-to-100-million-loss-data-theft/
|
| Oct. 3, 2023 |
Motel One Group’s Swift Response Thwarts Ransomware Attack |
https://www.hackread.com/motel-one-groups-thwarts-ransomware-attack/
|
| Oct. 3, 2023 |
Cybersecurity researchers spotted a new malware-as-a-service (MaaS) called BunnyLoader that’s appeared in the threat landscape. |
https://securityaffairs.com/151869/malware/bunnyloader-maas.html?amp=1
|
| Sept. 23, 2023 |
New stealthy and modular Deadglyph malware used in govt attacks |
https://www.bleepingcomputer.com/news/security/new-stealthy-and-modular-deadglyph-malware-used-in-govt-attacks/
|
| Sept. 23, 2023 |
0-days exploited by commercial surveillance vendor in Egypt |
https://blog.google/threat-analysis-group/0-days-exploited-by-commercial-surveillance-vendor-in-egypt/
|
| Sept. 23, 2023 |
Ahmed Eltantawy Targeted with Predator Spyware After Announcing Presidential Ambitions |
https://citizenlab.ca/2023/09/predator-in-the-wires-ahmed-eltantawy-targeted-with-predator-spyware-after-announcing-presidential-ambitions/
|
| Sept. 22, 2023 |
Chinese hackers have unleashed a never-before-seen Linux backdoor |
https://arstechnica.com/security/2023/09/never-before-seen-linux-backdoor-is-a-windows-malware-knockoff/
|
| Sept. 21, 2023 |
Chinese hackers have unleashed a never-before-seen Linux backdoor |
https://arstechnica.com/security/2023/09/never-before-seen-linux-backdoor-is-a-windows-malware-knockoff/
|
| Sept. 20, 2023 |
Attacks on 5G Infrastructure From Users’ Devices |
https://www.trendmicro.com/en_us/research/23/i/attacks-on-5g-infrastructure-from-users-devices.html
|
| Sept. 19, 2023 |
DHS: Ransomware attackers headed for second most profitable year |
https://therecord.media/dhs-ransomware-headed-for-second-profits
|
| Sept. 12, 2023 |
Redfly: Espionage Actors Continue to Target Critical Infrastructure |
https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/critical-infrastructure-attacks
|
| Sept. 10, 2023 |
“MrTonyScam” — Botnet of Facebook Users Launch High-Intent Messenger Phishing Attack on Business Accounts |
https://labs.guard.io/mrtonyscam-botnet-of-facebook-users-launch-high-intent-messenger-phishing-attack-on-business-3182cfb12f4d
|
| Sept. 5, 2023 |
4,500 of the Top 1 Million Websites Leaked Source Code, Secrets |
https://trufflesecurity.com/blog/4500-of-the-top-1-million-websites-leaked-source-code-secrets/
|
| Sept. 3, 2023 |
Government Agencies Report New Russian Malware Targets Ukrainian Military |
https://www.nsa.gov/Press-Room/Press-Releases-Statements/Press-Release-View/Article/3511738/government-agencies-report-new-russian-malware-targets-ukrainian-military/
|
| Aug. 30, 2023 |
BadBazaar espionage tool targets Android users via trojanized Signal and Telegram apps |
https://www.welivesecurity.com/en/eset-research/badbazaar-espionage-tool-targets-android-users-trojanized-signal-telegram-apps/
|
| Aug. 29, 2023 |
FBI Dismantles a Malware System That Took Millions in Ransom |
https://www.msn.com/en-us/money/markets/fbi-dismantles-a-malware-system-that-took-millions-in-ransom/ar-AA1fWQVA
|
| Aug. 29, 2023 |
Meta Cripples China's Signature 'Spamouflage' Influence Op |
https://www.darkreading.com/application-security/meta-vs-china-social-giant-cripples-chinese-disinformation-apt
|
| Aug. 28, 2023 |
Microsoft Releases Mitigation Notes for Windows Downfall Vulnerability |
https://securityonline.info/microsoft-releases-mitigation-notes-for-windows-downfall-vulnerability/
|
| Aug. 25, 2023 |
Flax Typhoon using legitimate software to quietly access Taiwanese organizations |
https://www.microsoft.com/en-us/security/blog/2023/08/24/flax-typhoon-using-legitimate-software-to-quietly-access-taiwanese-organizations/
|
| Aug. 23, 2023 |
TP-Link Smart Bulb Vulns Expose Households To Hacker Attacks |
https://www.securityweek.com/tp-link-smart-bulb-vulnerabilities-expose-households-to-hacker-attacks/
|
| Aug. 22, 2023 |
Uncle Sam: Rest of the world would love to steal our space blueprints – don't let 'em |
https://www.theregister.com/2023/08/21/us_satellite_hacking/
|
| Aug. 19, 2023 |
LinkedIn Suffers 'Significant' Wave of Account Hacks |
https://www.darkreading.com/attacks-breaches/linkedin-suffers-significant-wave-of-account-hacks
|
| Aug. 19, 2023 |
Phishing campaign steals accounts for Zimbra email servers worlwide |
https://www.bleepingcomputer.com/news/security/phishing-campaign-steals-accounts-for-zimbra-email-servers-worlwide/
|
| Aug. 19, 2023 |
LABRAT: Stealthy Cryptojacking and Proxyjacking Campaign Targeting GitLab |
https://sysdig.com/blog/labrat-cryptojacking-proxyjacking-campaign/
|
| Aug. 19, 2023 |
The Vulnerability of Zero Trust: Lessons from the Storm 0558 Hack |
https://thehackernews.com/2023/08/the-vulnerability-of-zero-trust-lessons.html?m=1
|
| Aug. 19, 2023 |
GitLab vulnerability leveraged in LABRAT cryptojacking, proxyjacking operation |
https://www.scmagazine.com/brief/gitlab-vulnerability-leveraged-in-labrat-cryptjacking-proxyjacking-operation
|
| Aug. 18, 2023 |
Fake Airplane Mode: A mobile tampering technique to maintain connectivity |
https://www.jamf.com/blog/fake-airplane-mode-a-mobile-tampering-technique-to-maintain-connectivity/
|
| Aug. 15, 2023 |
Discord.io confirms breach after hacker steals data of 760K users |
https://www.bleepingcomputer.com/news/security/discordio-confirms-breach-after-hacker-steals-data-of-760k-users/
|
| Aug. 15, 2023 |
Ford SYNC 3 infotainment vulnerable to drive-by Wi-Fi hijacking |
https://www.theregister.com/2023/08/14/ford_sync_vulnerability/
|
| Aug. 13, 2023 |
One of the world's largest crypto payment processors CoinsPaid loses $37M in hack |
https://x.com/bitcoinnewscom/status/1690809194146897920
|
| Aug. 13, 2023 |
DoubleDrive: fully-undetectable ransomware that utilizes OneDrive to encrypt target files |
https://github.com/SafeBreach-Labs/DoubleDrive
|
| Aug. 11, 2023 |
Electoral Commission had internet-facing server with unpatched vuln |
https://www.theregister.com/2023/08/11/electoral_commission_vulnerability/
|
| Aug. 11, 2023 |
Proxy-capable backdoor deployed in South African nation’s critical infrastructure |
https://securelist.com/focus-on-droxidat-systembc/110302/
|
| Aug. 11, 2023 |
Widespread file exposure possible with Western Digital, Synology NAS flaws |
https://www.scmagazine.com/brief/widespread-file-exposure-possible-with-western-digital-synology-nas-flaws
|
| Aug. 10, 2023 |
Rust-Based Injector Deploys XWorm and Remcos RAT in Multi-Stage Attack |
https://www.hackread.com/rust-injector-xworm-remcos-rat-multi-stage-attack/
|
| Aug. 7, 2023 |
New acoustic attack steals data from keystrokes with 95% accuracy |
https://www.bleepingcomputer.com/news/security/new-acoustic-attack-steals-data-from-keystrokes-with-95-percent-accuracy/
|
| Aug. 5, 2023 |
Reptile Rootkit: Advanced Linux Malware Targeting South Korean Systems |
https://asec.ahnlab.com/en/55785/
|
| Aug. 4, 2023 |
Salesforce Zero-Day Exploited to Phish Facebook Credentials |
https://www.darkreading.com/application-security/salesforce-zero-day-exploited-phish-facebook-credentials
|
| Aug. 3, 2023 |
Russian APT 'BlueCharlie' Swaps Infrastructure to Evade Detection |
https://www.darkreading.com/attacks-breaches/russian-apt-bluecharlie-swaps-infrastructure-to-evade-detection
|
| Aug. 3, 2023 |
Midnight Blizzard conducts targeted social engineering over Microsoft Teams |
https://www.microsoft.com/en-us/security/blog/2023/08/02/midnight-blizzard-conducts-targeted-social-engineering-over-microsoft-teams/
|
| Aug. 3, 2023 |
Microsoft Flags Growing Cybersecurity Concerns for Major Sporting Events |
https://www.microsoft.com/en-us/security/business/security-insider/reports/cyber-signals/cyber-signals-issue-5-cyberthreats-increasingly-target-the-worlds-biggest-event-stages/
|
| July 31, 2023 |
SpyNote continues to attack financial institutions | Cleafy Labs |
https://www.reddit.com/r/netsec/comments/15ebsh4/spynote_continues_to_attack_financial/
|
| July 31, 2023 |
Kenya cyber-attack: Why is eCitizen down? |
https://www.bbc.com/news/world-africa-66337573
|
| July 31, 2023 |
Hackers exploit BleedingPipe RCE to target Minecraft servers, players |
https://www.bleepingcomputer.com/news/security/hackers-exploit-bleedingpipe-rce-to-target-minecraft-servers-players/
|
| July 31, 2023 |
Patchwork Hackers Target Chinese Research Organizations Using EyeShell Backdoor |
https://medium.com/@knownsec404team/patchworks-new-assault-weapons-report-eyeshell-weapons-disclosure-181833f434be
|
| July 31, 2023 |
Canon warns of Wi-Fi security risks when discarding inkjet printers |
https://www.bleepingcomputer.com/news/security/canon-warns-of-wi-fi-security-risks-when-discarding-inkjet-printers/
|
| July 31, 2023 |
TelegramRAT - Cross Platform Telegram Based RAT That Communicates Via Telegram To Evade Network Restrictions |
https://www.kitploit.com/2023/07/telegramrat-cross-platform-telegram.html?m=1
|
| July 31, 2023 |
Air-Gapped ICS Systems Targeted by Sophisticated Malware |
https://www.darkreading.com/ics-ot/air-gapped-ics-systems-targeted-sophisticated-malware
|
| July 31, 2023 |
Cado Security Labs Encounter Novel Malware, Redis P2Pinfect |
https://www.cadosecurity.com/redis-p2pinfect/
|
| July 31, 2023 |
Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks |
https://www.securityweek.com/second-ivanti-epmm-zero-day-vulnerability-exploited-in-targeted-attacks/
|
| July 30, 2023 |
Now Abyss Locker also targets VMware ESXi servers |
https://securityaffairs.com/148933/malware/abyss-locker-vmware-esxi.html?amp=1
|
| July 28, 2023 |
Android malware steals user credentials using optical character recognition |
https://arstechnica.com/security/2023/07/android-malware-uses-ocr-to-capture-credentials-displayed-on-phone-screens/?utm_brand=arstechnica&utm_source=twitter&utm_social-type=owned&utm_medium=social
|
| July 28, 2023 |
CISA Releases Malware Analysis Reports on Barracuda Backdoors |
https://www.cisa.gov/news-events/alerts/2023/07/28/cisa-releases-malware-analysis-reports-barracuda-backdoors
|
| July 28, 2023 |
Hackers are infecting Call of Duty players with a self-spreading malware |
https://techcrunch.com/2023/07/27/hackers-are-infecting-call-of-duty-players-with-a-self-spreading-malware/
|
| July 27, 2023 |
AXIS A1001 Network Door Controller Flaw Exposes Secure Facilities |
https://www.hackread.com/axis-a1001-flaw-facilities-unauthorized-access/
|
| July 27, 2023 |
60,000 Androids have stalkerware-type app Spyhide installed |
https://www.malwarebytes.com/blog/news/2023/07/60000-androids-have-stalkerware-type-app-spyhide-installed
|
| July 27, 2023 |
Ransomware groups claim responsibility for double-attack on Yamaha |
https://www.malwarebytes.com/blog/news/2023/07/ransomware-groups-claim-responsibility-for-double-attack-on-yamaha
|
| July 26, 2023 |
VMware fixes bug exposing CF API admin credentials in audit logs |
https://www.bleepingcomputer.com/news/security/vmware-fixes-bug-exposing-cf-api-admin-credentials-in-audit-logs/
|
| July 26, 2023 |
Super Admin elevation bug puts 900,000 MikroTik devices at risk |
https://www.bleepingcomputer.com/news/security/super-admin-elevation-bug-puts-900-000-mikrotik-devices-at-risk/
|
| July 26, 2023 |
Rust-based Realst Infostealer Targeting Apple macOS Users' Cryptocurrency Wallets |
https://iamdeadlyz.gitbook.io/malware-research/july-2023/fake-blockchain-games-deliver-redline-stealer-and-realst-stealer-a-new-macos-infostealer-malware
|
| July 26, 2023 |
Chinese hacking group APT31 uses mesh of home routers to disguise attacks |
https://therecord.media/chinese-hacking-group-apt31-uses-mesh-of-home-routers-to-disguise-attacks
|
| July 26, 2023 |
Advisory: Ivanti Endpoint Manager Mobile (EPMM) Authentication Bypass Vulnerability |
https://www.mnemonic.io/resources/blog/ivanti-endpoint-manager-mobile-epmm-authentication-bypass-vulnerability/
|
| July 24, 2023 |
Google half-patches Cloud Build permissions exploit, the rest is on you |
https://www.theregister.com/2023/07/24/infosec_in_brief/
|
| July 24, 2023 |
Experts warn of OSS supply chain attacks against the banking sector |
https://securityaffairs.com/148757/cyber-crime/supply-chain-attack-banking-sector.html?amp=1
|
| July 24, 2023 |
Deconstructing PowerShell Obfuscation in Malspam Campaigns |
https://www.sentinelone.com/blog/deconstructing-powershell-obfuscation-in-malspam-campaigns/
|
| July 24, 2023 |
Critical Zero-Days in Atera Windows Installers Expose Users to Privilege Escalation Attacks |
https://www.mandiant.com/resources/blog/privileges-third-party-windows-installers
|
| July 24, 2023 |
North Korea Leverages SaaS Provider in a Targeted Supply Chain Attack |
https://www.mandiant.com/resources/blog/north-korea-supply-chain
|
| July 24, 2023 |
ALPHV ransomware group now provides an API for their ransomware leak site. |
https://twitter.com/vxunderground/status/1683479796917891075?s=20
|
| July 24, 2023 |
Lookout Attributes Advanced Android Surveillanceware to Chinese Espionage Group APT41 |
https://www.lookout.com/threat-intelligence/article/wyrmspy-dragonegg-surveillanceware-apt41
|
| July 23, 2023 |
Shadowserver Reported That +15k Citrix Servers Are Likely Vulnerable To Attacks Exploiting The Flaw Cve-2023-3519 |
https://securityaffairs.com/148735/hacking/15k-citrix-servers-vulnerable-cve-2023-3519.html?amp=1
|
| July 23, 2023 |
Roblox Pwned |
https://haveibeenpwned.com/PwnedWebsites#Roblox
|
| July 23, 2023 |
NetScaler RCE Abused To Pilfer Critical Infra Active Directory Data |
https://www.scmagazine.com/news/critical-infrastructure/netscaler-rce-bug-critical-infrastructure-active-directory-data
|
| July 23, 2023 |
BMC Firmware Flaw Affecting Millions Gives Superuser Access |
https://arstechnica.com/security/2023/07/millions-of-servers-inside-data-centers-imperiled-by-flaws-in-ami-bmc-firmware/
|
| July 22, 2023 |
Phishers Exploiting Google Docs to Harvest Crypto Credentials |
https://www.hackread.com/phishers-google-docs-harvest-crypto-credentials/
|
| July 21, 2023 |
Global CDN Service ‘jsdelivr’ Exposed Users to Phishing Attacks |
https://www.hackread.com/global-cdn-service-jsdelivr-phishing-attacks/
|
| July 21, 2023 |
Band-aid on a… corpse: Microsoft patches IE — again |
https://www.kaspersky.com/blog/microsoft-patch-tuesday-july-2023/48606/
|
| July 20, 2023 |
AVrecon RAT hidden in SOHO routers infected 70,000 devices in 20 countries in two years |
https://securityonline.info/avrecon-rat-hidden-in-soho-routers-infected-70000-devices-in-20-countries-in-two-years/
|
| July 20, 2023 |
Critical AMI MegaRAC bugs can let hackers brick vulnerable servers |
https://www.bleepingcomputer.com/news/security/critical-ami-megarac-bugs-can-let-hackers-brick-vulnerable-servers/
|
| July 20, 2023 |
Mallox Ransomware Exploits Weak MS-SQL Servers to Breach Networks |
https://thehackernews.com/2023/07/mallox-ransomware-exploits-weak-ms-sql.html
|
| July 20, 2023 |
Apache OpenMeetings Wide Open to Account Takeover, Code Execution |
https://www.darkreading.com/remote-workforce/apache-openmeetings-account-takeover-code-execution
|
| July 20, 2023 |
New P2PInfect Worm Targeting Redis Servers on Linux and Windows Systems |
https://thehackernews.com/2023/07/new-p2pinfect-worm-targeting-redis.html?m=1
|
| July 19, 2023 |
Chinese APT41 Hackers Target Mobile Devices with New WyrmSpy and DragonEgg Spyware |
https://thehackernews.com/2023/07/chinese-apt41-hackers-target-mobile.html?m=1
|
| July 19, 2023 |
Ukraine takes down massive bot farm, seizes 150,000 SIM cards |
https://www.bleepingcomputer.com/news/security/ukraine-takes-down-massive-bot-farm-seizes-150-000-sim-cards/
|
| July 19, 2023 |
American Airlines Hacked by Cl0P Gang, MOVEit Involved |
https://gridinsoft.com/blogs/american-airlines-hack-cl0p/
|
| July 19, 2023 |
Microsoft has identified targeted attacks against the defense sector in Ukraine and Eastern Europe by the threat actor Secret Blizzard (KRYPTON, UAC-0003) leveraging DeliveryCheck, a novel .NET backdoor used to deliver a variety of second stage payloads. |
https://twitter.com/msftsecintel/status/1681695399084539908
|
| July 19, 2023 |
FakeSG enters the 'FakeUpdates' arena to deliver NetSupport RAT |
https://www.malwarebytes.com/blog/threat-intelligence/2023/07/socgholish-copycat-delivers-netsupport-rat
|
| July 18, 2023 |
Critical ColdFusion flaws exploited in attacks to drop webshells |
https://www.bleepingcomputer.com/news/security/critical-coldfusion-flaws-exploited-in-attacks-to-drop-webshells/
|
| July 18, 2023 |
Google Cloud Build bug lets hackers launch supply chain attacks |
https://www.bleepingcomputer.com/news/security/google-cloud-build-bug-lets-hackers-launch-supply-chain-attacks/
|
| July 18, 2023 |
Cybercriminals Exploiting WooCommerce Payments Plugin Flaw to Hijack Websites |
https://thehackernews.com/2023/07/cybercriminals-exploiting-woocommerce.html
|
| July 18, 2023 |
Microsoft Exchange Online hit by new outage blocking emails |
https://www.bleepingcomputer.com/news/microsoft/microsoft-exchange-online-hit-by-new-outage-blocking-emails/
|
| July 18, 2023 |
Pakistani Entities Targeted in Sophisticated Attack Deploying ShadowPad Malware |
https://thehackernews.com/2023/07/pakistani-entities-targeted-in.html?m=1
|
| July 18, 2023 |
New breach: 4k records from the 2017-2020 Roblox Developers Conferences |
https://twitter.com/haveibeenpwned/status/1681414153494470656
|
| July 18, 2023 |
Sogu, SnowyDrive Malware Spreads, USB-Based Cyberattacks Surge |
https://www.darkreading.com/attacks-breaches/sogu-snowydrive-malware-usb-based-cyberattacks-surge
|
| July 18, 2023 |
Freemius WordPress SDK used by 7M sites is vulnerable to XSS attack (CVE-2023-33999) |
https://securityonline.info/freemius-wordpress-sdk-used-by-7m-sites-is-vulnerable-to-xss-attack-cve-2023-33999/
|
| July 18, 2023 |
FIN8 Group Using Modified Sardonic Backdoor for BlackCat Ransomware Attacks |
https://thehackernews.com/2023/07/fin8-group-using-modified-sardonic.html?m=1
|
| July 17, 2023 |
Adobe warns of critical Colfdusion RCE bug exploited in attacks |
https://www.bleepingcomputer.com/news/security/adobe-warns-of-critical-colfdusion-rce-bug-exploited-in-attacks/
|
| July 17, 2023 |
JumpCloud discloses breach by state-backed APT hacking group |
https://www.bleepingcomputer.com/news/security/jumpcloud-discloses-breach-by-state-backed-apt-hacking-group/
|
| July 17, 2023 |
A Spelling Mistake Is Causing Thousands of Sensitive Pentagon Documents to Be Leaked to a Russian Ally |
https://themessenger.com/news/thousands-of-sensitive-military-documents-are-being-leaked-to-russian-ally-because-of-spelling-mistake
|
| July 17, 2023 |
WINTAPIX: A New Kernel Driver Targeting Countries in The Middle East |
https://www.fortinet.com/blog/threat-research/wintapix-kernal-driver-middle-east-countries
|
| July 17, 2023 |
Thousands of images on Docker Hub leak auth secrets, private keys |
https://www.bleepingcomputer.com/news/security/thousands-of-images-on-docker-hub-leak-auth-secrets-private-keys/
|
| July 15, 2023 |
Fake TeamViewer Installer Used to Deliver njRAT Malware |
https://www.hackread.com/fake-teamviewer-installer-njrat-malware/
|
| July 14, 2023 |
TeamTNT's Cloud Credential Stealing Campaign Now Targets Azure and Google Cloud |
https://thehackernews.com/2023/07/teamtnts-cloud-credential-stealing.html
|
| July 13, 2023 |
SonicWall warns admins to patch critical auth bypass bugs immediately |
https://www.bleepingcomputer.com/news/security/sonicwall-warns-admins-to-patch-critical-auth-bypass-bugs-immediately/
|
| July 13, 2023 |
The Turkish Government Masqueraded Site Distributing Android RAT |
https://blog.cyble.com/2023/07/10/the-turkish-government-masqueraded-site-distributing-android-rat/
|
| July 13, 2023 |
CL0P HACKER OPERATING FROM RUSSIA-UKRAINE WAR FRONT LINE |
https://securityaffairs.com/148399/cyber-crime/cl0p-hacker-operating-from-russia-ukraine.html?amp=1
|
| July 13, 2023 |
USB drive malware attacks spiking again in first half of 2023 |
https://www.bleepingcomputer.com/news/security/usb-drive-malware-attacks-spiking-again-in-first-half-of-2023/
|
| July 13, 2023 |
New PyLoose Linux malware mines crypto directly from memory |
https://www.bleepingcomputer.com/news/security/new-pyloose-linux-malware-mines-crypto-directly-from-memory/
|
| July 13, 2023 |
Russian state hackers lure Western diplomats with BMW car ads |
https://www.bleepingcomputer.com/news/security/russian-state-hackers-lure-western-diplomats-with-bmw-car-ads/
|
| July 12, 2023 |
Hackers Exploit Policy Loophole in Windows Kernel Drivers |
https://www.darkreading.com/endpoint/hackers-exploit-policy-loophole-windows-kernel-drivers
|
| July 12, 2023 |
Behind the Scenes: Unveiling the Hidden Workings of Earth Preta APT |
https://www.trendmicro.com/en_us/research/23/f/behind-the-scenes-unveiling-the-hidden-workings-of-earth-preta.html
|
| July 12, 2023 |
Novel RedDriver tool used in attacks against Chinese Microsoft users |
https://www.scmagazine.com/brief/device-security/novel-reddriver-tool-used-in-attacks-against-chinese-microsoft-users
|
| July 7, 2023 |
Global Translation Service Exposed Highly Sensitive Records Online |
https://www.hackread.com/global-translation-service-exposed-records/
|
| July 7, 2023 |
CISA warns govt agencies to patch actively exploited Android driver |
https://www.bleepingcomputer.com/news/security/cisa-warns-govt-agencies-to-patch-actively-exploited-android-driver/
|
| July 7, 2023 |
Cisco warns of a flaw in Nexus 9000 series switches that allows modifying encrypted traffic |
https://securityaffairs.com/148235/security/cisco-nexus-9000-series-flaw.html?amp=1
|
| July 7, 2023 |
China-Linked Spyware Found in Google Play Store Apps, 2m Downloads |
https://www.hackread.com/china-spyware-google-play-store-apps/
|
| July 7, 2023 |
JumpCloud Resets API Keys Amid Ongoing Cybersecurity Incident |
https://thehackernews.com/2023/07/jumpcloud-resets-api-keys-amid-ongoing.html?m=1
|
| July 6, 2023 |
Botnets Send Exploits Within Days to Weeks After Published PoC |
https://www.darkreading.com/vulnerabilities-threats/botnets-send-exploits-only-day-to-weeks-after-published-poc
|
| July 5, 2023 |
SmugX: Chinese Hackers Targeting Embassies in Europe |
https://www.hackread.com/smugx-attack-chinese-hackers-europe/
|
| July 5, 2023 |
Understanding Malware-as-a-Service |
https://securelist.com/malware-as-a-service-market/109980
|
| July 4, 2023 |
CVE-2023-27997 Is Exploitable, and 69% of FortiGate Firewalls Are Vulnerable |
https://bishopfox.com/blog/cve-2023-27997-exploitable-and-fortigate-firewalls-vulnerable?utm_campaign=awareness&utm_medium=social&utm_source=twitter&utm_term=blog
|
| July 3, 2023 |
New 'RustBucket' Malware Variant Targeting macOS Users |
https://thehackernews.com/2023/07/beware-new-rustbucket-malware-variant.html
|
| July 3, 2023 |
Hackers exploit zero-day in Ultimate Member WordPress plugin with 200K installs |
https://www.bleepingcomputer.com/news/security/hackers-exploit-zero-day-in-ultimate-member-wordpress-plugin-with-200k-installs/
|
| July 3, 2023 |
Neo_Net | The Kingpin of Spanish eCrime |
https://www.sentinelone.com/blog/neo_net-the-kingpin-of-spanish-ecrime/
|
| July 3, 2023 |
New proxyjacking attacks monetize hacked SSH servers’ bandwidth |
https://www.bleepingcomputer.com/news/security/new-proxyjacking-attacks-monetize-hacked-ssh-servers-bandwidth/
|
| July 3, 2023 |
Us, hacked by LockBit? No, says TSMC, that would be our IT supplier |
https://www.theregister.com/2023/06/30/tsmc_supplier_lockbit_breach/
|
| June 30, 2023 |
Iran-linked Charming Kitten Apt Enhanced Its Powerstar Backdoor |
https://securityaffairs.com/147995/apt/charming-kitten-powerstar-backdoor.html?amp=1
|
| June 30, 2023 |
MOVEit Hackers Find Simpler Business Model Than Ransomware |
https://www.scmagazine.com/analysis/third-party-risk/moveit-hackers-may-have-found-simpler-business-model-beyond-ransomware
|
| June 29, 2023 |
From Group to Individual: Modeling InformNapalm’s Article on Sergey Morgachev of APT28 |
https://vertex.link/blogs/doxed-gru-officer/
|
| June 28, 2023 |
Warning: JavaScript registry npm vulnerable to 'manifest confusion' abuse |
https://www.theregister.com/2023/06/27/javascript_registry_npm_vulnerable/
|
| June 28, 2023 |
New Mockingjay process injection technique evades EDR detection |
https://www.bleepingcomputer.com/news/security/new-mockingjay-process-injection-technique-evades-edr-detection/
|
| June 28, 2023 |
Critical SQL Injection Flaws Expose Gentoo Soko to Remote Code Execution |
https://thehackernews.com/2023/06/critical-sql-injection-flaws-expose.html?m=1
|
| June 24, 2023 |
New strain of JavaScript dropper delivers Bumblebee and IcedID malware |
https://www.scmagazine.com/news/malware/new-strain-of-javascript-dropper-delivers-bumblebee-and-icedid-malware
|
| June 24, 2023 |
Chinese Espionage Malware Targets European Healthcare via USB Drives |
https://www.hackread.com/china-espionage-malware-usb-drives-europe/
|
| June 23, 2023 |
UK cyberspies warn ransomware crews targeting law firms |
https://www.theregister.com/2023/06/23/ransomware_law_firms/
|
| June 22, 2023 |
US Military Personnel Targeted by Unsolicited Smartwatches Linked to Data Breaches |
https://www.hackread.com/us-military-unsolicited-smartwatches-data-breach/
|
| June 22, 2023 |
Critical Flaw Found in WordPress Plugin for WooCommerce Used by 30,000 Websites |
https://thehackernews.com/2023/06/critical-flaw-found-in-wordpress-plugin.html?m=1
|
| June 22, 2023 |
APT37 hackers deploy new FadeStealer eavesdropping malware |
https://www.bleepingcomputer.com/news/security/apt37-hackers-deploy-new-fadestealer-eavesdropping-malware/
|
| June 22, 2023 |
20-Year-Old Chinese APT15 Finds New Life in Foreign Ministry Attacks |
https://www.darkreading.com/vulnerabilities-threats/20-year-old-chinese-apt15-new-life-foreign-ministry-attacks
|
| June 22, 2023 |
Advisory: IDOR in Microsoft Teams Allows for External Tenants to Introduce Malware |
https://labs.jumpsec.com/advisory-idor-in-microsoft-teams-allows-for-external-tenants-to-introduce-malware/
|
| June 22, 2023 |
AWS WAF Clients Left Vulnerable to SQL Injection Due to Unorthodox MSSQL Design Choice |
https://www.gosecure.net/blog/2023/06/21/aws-waf-clients-left-vulnerable-to-sql-injection-due-to-unorthodox-mssql-design-choice/
|
| June 22, 2023 |
eSentire Threat Intelligence Malware Analysis: Resident Campaign |
https://www.esentire.com/blog/esentire-threat-intelligence-malware-analysis-resident-campaign
|
| June 21, 2023 |
eSentire Threat Intelligence Malware Analysis: Aurora Stealer |
https://www.esentire.com/blog/esentire-threat-intelligence-malware-analysis-aurora-stealer
|
| June 21, 2023 |
Silent Push Launches with $10M in Total Funding to Bring Detection Focused Threat Intelligence to the Market |
https://www.prnewswire.com/news-releases/silent-push-launches-with-10m-in-total-funding-to-bring-detection-focused-threat-intelligence-to-the-market-301850019.html
|
| June 20, 2023 |
ASUS Product Security Advisory - Patch Now! |
https://www.asus.com/content/asus-product-security-advisory/
|
| June 20, 2023 |
100K+ Compromised ChatGPT Accounts on Dark Web Marketplaces |
https://www.group-ib.com/media-center/press-releases/stealers-chatgpt-credentials/
|
| June 20, 2023 |
AI suggested 40,000 new possible chemical weapons in just six hours |
https://www.theverge.com/2022/3/17/22983197/ai-new-possible-chemical-weapons-generative-models-vx
|