We analyze two new KimJongRAT stealer variants, combining new research with existing knowledge. One uses a Portable Executable (PE) file and the other PowerShell. The post Exploring a New...

Email hosting provider Cock.li has confirmed it suffered a data breach after threat actors exploited flaws in its now-retired Roundcube webmail platform to steal over a million user records. [...]

Tenable Cloud Research discovered a supply chain compromise vulnerability in Google's Gerrit code-collaboration platform which we dubbed GerriScary. GerriScary allowed unauthorized code submission...

New City of London Police data reveals British men and women lost over £100m to romance fraudsters in 2024

Every major browser on every platform offers a way to save passwords and passkeys. If you use a third-party password manager, those built-in features can create a big mess. Here's how to clean things up.

Google has unveiled its Safety Charter in India, which will expand its AI-led developments for fraud detection and combating scams across the country, the company’s largest market outside the...

Smarter TV operating systems bring more convenience - but they also raise new privacy concerns, especially when it comes to automatic content recognition (ACR).

The shooter allegedly researched several “people search” sites in an attempt to target his victims, highlighting the potential dangers of widely available personal data.

Explore how China’s PLA is adopting generative AI for military intelligence. This Insikt Group report reveals AI-driven intelligence tools, strategic adaptations, and implications for global security.

The new I/O solution gives manufacturers greater design freedom to build smarter, more adaptable machines.

She will assume the role on Sept. 1, 2025, succeeding Ola Samelius, who will retire in 2026 after many successful years with the company.

Explore how IPv6-first networks disrupt mass scanning tactics and enable stronger, AI-driven security through deceptive address space and Zero Trust principles.

There’s a new Erlang OTP vulnerability, CVE-2025-4748. It’s an Absolute Path Traversal vulnerability involving a Zip archive, which I have a lot of practice with. It affects Erlang OTP, which a...

CVE-2025-3248 is an unauthenticated remote code execution (RCE) vulnerability in Langflow, a popular Python-based framework for building AI applications. The flaw lies in the code validation...

The U.S. Department of Justice (DoJ) said it has filed a civil forfeiture complaint in federal court that targets over $7.74 million in cryptocurrency, non-fungible tokens (NFTs), and other...

The ever-popular penetration testing Linux distribution is now better refined for ethical hacking, penetration testing, audits, and network research.

The U.S. State Department said it is looking for information on hackers linked to Iran's Islamic Revolutionary Guard Corps.

Multiple U.S.-based companies in the insurance sector have already been hit over the past week and a half, according to Mandiant. The post Scattered Spider, fresh off retail sector attack spree,...

Multiple U.S.-based companies in the insurance sector have already been hit over the past week and a half, according to Mandiant. The post Scattered Spider, fresh off retail sector attack spree,...

An emerging ransomware strain has been discovered incorporating capabilities to encrypt files as well as permanently erase them, a development that has been described as a "rare dual-threat." "The...

One of the best ways to keep up with everything at Barracuda is to attend our regular series of webinars. You’ll get the inside story on how we’re helping customers and partners to navigate the...

New research by Infoblox Threat Intel exposes a hidden alliance between major cybercrime groups like VexTrio and seemingly…

Some of the biggest security problems start quietly. No alerts. No warnings. Just small actions that seem normal but aren't. Attackers now know how to stay hidden by blending in, and that makes it...

Introduction The cybersecurity landscape is evolving rapidly, and so are the cyber needs of organizations worldwide. While businesses face mounting pressure from regulators, insurers, and rising...

Threat intelligence researchers are warning of hackers breaching multiple U.S. companies in the insurance industry using all the tactics observed with Scattered Spider activity. [...]

The move last week came amid the pullback of other SEC regulations. The post SEC withdrawals cyber rules for investment companies, advisers appeared first on CyberScoop.

A new executive order from President Trump rolls back several Biden-era cybersecurity mandates, shifting from requirements to recommendations. Experts warn this deregulatory shift may weaken...

Cyber-attacks using HijackLoader and DeerStealer have been identified exploiting phishing tactics via ClickFix

Archetyp Market facilitated high-volume sales of fentanyl, cocaine, MDMA, amphetamines and synthetic opioids since 2020, according to authorities. The post European authorities disrupt top drug...

Archetyp Market facilitated high-volume sales of fentanyl, cocaine, MDMA, amphetamines and synthetic opioids since 2020, according to authorities. The post European authorities disrupt top drug...