Spain's Guardia Civil and Europol touted an operation that took down an international scheme that lured victims into bogus cryptocurrency investments.
ESET Chief Security Evangelist Tony Anscombe reviews some of the report's standout findings and their implications for organizations in 2025 and beyond
Starting in August, your saved passwords will no longer be accessible in Microsoft's Authenticator app. You have several options.
Scammers are exploiting Microsoft 365 Direct Send to spoof internal emails targeting US firms bypassing security filters with…
CertiK found $2.47bn in crypto was stolen in H1 2025, largely due to two major security incidents – ByBit and Cetus
The threat actor Sarcoma has been held responsible for a ransomware attack on a Swiss health foundation
On Monday, the International Criminal Court (ICC) announced that it's investigating a new "sophisticated" cyberattack that targeted its systems last week. [...]
Disclosure: This article was provided by ANY.RUN. The information and analysis presented are based on their research and findings.
The U.S. Department of Justice (DoJ) announced coordinated law enforcement actions against North Korean government's fund raising operations using remote IT workers. [...]
Microsoft has said that it's ending support for passwords in its Authenticator app starting August 1, 2025. The changes, the company said, are part of its efforts to streamline autofill in the...
In June 2025, Israel carried out airstrikes against key Iranian military and nuclear facilities. Iran swiftly retaliated, escalating regional tensions to unprecedented levels. This military...
Interpol warns that scam centers are expanding beyond Southeast Asia
Esse Health, a healthcare provider based in St. Louis, Missouri, is notifying over 263,000 patients that their personal and health information was stolen in an April cyberattack. [...]
The FY 2026 House Homeland Security Appropriations Bill highlights growing focus in Congress on protecting border infrastructure from cyber threats. The directive to implement continuous...
ESET experts discuss Sandworm’s new data wiper, UnsolicitedBooker’s relentless campaigns, attribution challenges amid tool-sharing, and other key findings from the latest APT Activity Report
Both the US authorities and Microsoft have taken action to disrupt North Korean IT worker schemes
Building automation giant Johnson Controls is notifying individuals whose data was stolen in a massive ransomware attack that impacted the company's operations worldwide in September 2023. [...]
2025-06-29 • Medium Sapir Twig • Sapir Twig • win.darkgate Open article on Malpedia
2025-06-20 • Field Effect • Daniel Albrecht, Elena Lapina, Field Effect, Sean Alexander Open article on Malpedia
2025-06-27 • axios • Sam Sabin Open article on Malpedia
2025-06-30 • ICC • ICC Open article on Malpedia
2025-06-29 • Humpty's RE Blog • cyb3rjerry • win.supper Open article on Malpedia
Google has released emergency updates to patch another Chrome zero-day vulnerability exploited in attacks, marking the fourth such flaw fixed since the start of the year. [...]
Fonts can include ligatures - special case specific combinations of letters. For instance, an "f" and an "i" combine into "fi" nicely. The bug reporter noticed that Google Sans, used in the domain...
The blog post introduces a concept known as differential fuzzing. The idea is to generate input, process it through multiple pipelines and see if the output is the same. In blockchain protocols...
July 1, 2025 According to detection statistics collected by Dr.Web Security Space for mobile devices, adware trojans from various families remained the most common malware. Members of the...
July 1, 2025 According to statistics collected by the Dr.Web anti-virus, the total number of threats detected in the second quarter of 2025 decreased by 7.38%, compared to the first quarter. At...
Industrial cybersecurity firm Claroty reported that the April compromise of a control system at a Norwegian dam and... The post Lake Risevatnet dam hack exposes industrial cyber gaps as weak...
New Censys data examined recent internet exposure of four device types previously targeted or monitored by Iranian threat... The post Censys researchers find industrial devices still wide open...
Edge computing, machine learning algorithms and centralized management platforms work in tandem to ensure industrial systems keep running.