Coinbase is offering a $20m reward to help catch the threat actor behind a cyber-attack that could cost it between $180-$400m
Cybersecurity researchers have discovered a malicious package named "os-info-checker-es6" that disguises itself as an operating system information utility to stealthily drop a next-stage payload...
A new wave of attacks uses PowerShell and LNK files to secretly install Remcos RAT, enabling full remote…
Hackers are running a worldwide cyberespionage campaign dubbed 'RoundPress,' leveraging zero-day and n-day flaws in webmail servers to steal email from high-value government organizations. [...]
A stealthy fileless PowerShell attack using Remcos RAT bypassed antivirus by operating in memory
ASEC Blog publishes “Mobile Security & Malware Issue 3st Week of May, 2025”
Recently, AhnLab SEcurity intelligence Center (ASEC) has identified cases of the ModiLoader (DBatLoader) malware being distributed via email. ModiLoader ultimately executes SnakeKeylogger....
This report provides statistics, trends, and case information on the distribution of Infostealer malware, including the distribution volume, methods, and disguises, based on the data collected and...
Trends of major APT groups by country 1) North Korea Since November 2024, the North Korean APT group has been exploiting the vulnerability of South Korean Internet financial security software....
The SANS Institute has announced a major expansion of its Cyber Academies, aiming to triple the number of... The post SANS Institute ramps up cybersecurity workforce development, triples cyber...
In order to stay connected and in touch with customers and employees, businesses of all sizes are transforming their communication platforms to stay ahead. However, to fully embrace the AI...
The FBI warned that cybercriminals using AI-generated audio deepfakes to target U.S. officials in voice phishing attacks that started in April. [...]
The critical vulnerability is being exploited by BianLian, RansomwEXX and a Chinese nation-state actor known as Chaya_004
Dior confirmed a data breach compromising customer personal information, discovered on May 7
FrigidStealer malware targets macOS users via fake browser updates, stealing passwords, crypto wallets, and notes using DNS-based data…
Operation RoundPress targets webmail software to steal secrets from email accounts belonging mainly to governmental organizations in Ukraine and defense contractors in the EU
Kaspersky ICS CERT shares trends and statistics on industrial threats in Q1 2025.
Exploited CVEs are a leading cause of cloud breaches. Learn how to effectively mitigate them through context-aware risk prioritization.
Researchers discovered over 3000 Linux vulnerabilities in 2024, the most of any category
Nova Scotia Power confirms it suffered a data breach after threat actors stole sensitive customer data in a cybersecurity incident discovered last month. [...]
The voluntary cybersecurity charter asks NHS suppliers to commit to eight cybersecurity pledges, amid rising attacks on healthcare
Credential protection is key to preventing breaches. Secure APIs, rotate secrets and train devs to handle credentials safely…
The benefits of cybercrime aren't all flashy cars and watches. Sophos X-Ops researchers discovered it also fuels a far-reaching mix of ordinary, sometimes unremarkable businesses. The post Who...
The benefits of cybercrime aren't all flashy cars and watches. Sophos X-Ops researchers discovered it also fuels a far-reaching mix of ordinary, sometimes unremarkable businesses. The post Who...
The crypto exchange giant said the hacker bribed contractors and employees in support roles to steal data.
On the first day of Pwn2Own Berlin 2025, security researchers were awarded $260,000 after successfully demonstrating zero-day exploits for Windows 11, Red Hat Linux, Docker Desktop, and Oracle...
Google on Wednesday released updates to address four security issues in its Chrome web browser, including one for which it said there exists an exploit in the wild. The high-severity...
Over the years, many different technologies have transitioned to Cloud-based solutions, including ERP systems and email management platforms.…
Tor has announced Oniux, a new command-line tool for routing any Linux application securely through the Tor network for anonymized network connections. [...]
Police in Europe have shut down a fake online trading platform that scammed hundreds of victims out of…