Cisco Talos observed a destructive attack on a critical infrastructure entity within Ukraine, using a previously unknown wiper we are calling “PathWiper.”
The report presents statistics for Windows, macOS, IoT, and other threats, including ransomware, miners, local and web-based threats, for Q1 2025.
The number of attacks on mobile devices involving malware, adware, or unwanted apps saw a significant increase in the first quarter.
On Christmas Day in 2014 hackers knocked out the Xbox and PlayStation gaming networks, impacting how video game companies handled cybersecurity for years.
Extensions analyzed expose information such as browsing domains, machine IDs, OS details, usage analytics, and more.
API keys, secrets, and tokens commonly left exposed in browser extensions’ code.
ESET researchers analyzed a cyberespionage campaign conducted by BladedFeline, an Iran-aligned APT group with likely ties to OilRig
Endpoint and network security is still essential, even as malicious actors turn to supply chains, identities and AI
The German data protection authority (BfDI) has fined Vodafone GmbH, the telecommunications company's German subsidiary, €45 million ($51.4 million) for privacy and security violations. [...]
2025-05-27 • AIVD • AIVD Open article on Malpedia
Two members of a group of cybercriminals named ViLE were sentenced this week for hacking into a federal law enforcement web portal in an extortion scheme. [...]
The Interlock ransomware gang has claimed a recent cyberattack on the Kettering Health healthcare network and leaked data allegedly stolen from breached systems. [...]
The U.S. Department of State has announced a reward of up to $10 million for any information on government-sponsored hackers with ties to the RedLine infostealer malware operation and its...
University spokesperson says Genevieve Bell’s account had ‘liked’ posts she had never seen before about Julie Bishop and GazaGet our breaking news email, free app or daily news podcastThe...
New research from Censys identified that nearly 400 web-based Human Machine Interfaces (HMIs) connected to U.S. water facilities... The post About 400 exposed web-based US water facility...
SIEM software solutions give organizations a centralized view of their digital environments, enabling them to detect anomalies, investigate incidents and respond to threats.
These days, one of my favourite hobbies is complaining about Suricata. In this blog, I’m going to talk about some of the weirdness in Suricata when processing URL-encoded data! I’m gonna go into...
After three years of peddling stolen data, BidenCash, one of the web's most brazen cybercrime hubs is offline, and authorities say they're just getting started.
The cybercrime marketplace was used by more than 117,000 customers and trafficked more than 15 million credit card numbers since March 2022, the Justice Department said. The post Feds seize 145...
The cybercrime marketplace was used by more than 117,000 customers and trafficked more than 15 million credit card numbers since March 2022, the Justice Department said. The post Feds seize 145...
A requirement that ICE agents ensure courthouse arrests don't clash with state and local laws has been rescinded by the agency. ICE declined to explain what that means for future enforcement.
Google has disclosed details of a financially motivated threat cluster that it said "specialises" in voice phishing (aka vishing) campaigns designed to breach organizations' Salesforce instances...
Research shows that AI-generated code is remarkably insecure. Yet experts tell CyberScoop it's up to industry to figure out a way to limit the issues the technology introduces. The post Vibe...
The FBI and Dutch national police were among the law enforcement agencies that took down BidenCash, a cybercrime marketplace attributed to millions of dollars in fraud since late 2022.
A group of cybercriminals known as Interlock is advertising stolen data from Kettering Health, which includes patients’ data.
Google Threat Intelligence Group said about 20 organizations have been hit by a cybercrime group it tracks as UNC6040. The post Salesforce customers duped by series of social-engineering attacks...
Google Threat Intelligence Group said about 20 organizations have been hit by a cybercrime group it tracks as UNC6040. The post Salesforce customers duped by series of social-engineering attacks...
Multiple Vulnerabilities have been discovered in HPE StoreOnce Software, which when chained together could allow for remote code execution, potentially leading to session hijacking and full system...
Hackers leak data of 88 million AT&T customers with decrypted SSNs; latest breach raises questions about links to earlier Snowflake-related attack.
Threat hunters are calling attention to a new variant of a remote access trojan (RAT) called Chaos RAT that has been used in recent attacks targeting Windows and Linux systems. According to...