India and Pakistan may have reached a status quo of ceasefire on ground, air and sea for now, but the two neighbors are still going hard at each other in cyberspace. In the aftermath of the...
Cloud networking is an IT infrastructure model that relies on cloud-based services to provide network capabilities. It is the technology that bridges across clouds and connects an enterprise’s...
Trend Micro researchers exposed a sophisticated cyber espionage campaign orchestrated by a threat actor dubbed Earth Ammit, which... The post Earth Ammit espionage campaign targets government,...
Researchers at EclecticIQ assess with high confidence that, in April 2025, China-nexus nation-state APTs (Advanced Persistent Threats) launched... The post EclecticIQ details Chinese state-backed...
Russell Vought, acting director of the Consumer Financial Protection Bureau, has canceled plans to more tightly regulate the sale of Americans’ sensitive personal data.
Flashpoint uncovers how North Korean hackers used fake identities to secure remote IT jobs in the US, siphoning…
A cyber espionage group known as Earth Ammit has been linked to two related but distinct campaigns from 2023 to 2024 targeting various entities in Taiwan and South Korea, including military,...
Google is rolling out a change to Chromium that "de-elevates" Google Chrome so it does not run as an administrator to increase security in Windows. [...]
Organizations across industries are experiencing significant escalations in cyberattacks, particularly targeting critical infrastructure providers and cloud-based enterprises. Verizon’s recently...
Cybersecurity researchers have discovered a new phishing campaign that's being used to distribute malware called Horabot targeting Windows users in Latin American countries like Mexico, Guatemala,...
Android Enterprise introduced Device Trust to enhance mobile security on Android devices
Starting fresh in a new country is a daunting journey, filled with unfamiliar surroundings and cultural uncertainties. For many immigrants, the support of their community is crucial in building a...
Google warned today that hackers using Scattered Spider tactics against retail chains in the United Kingdom have also started targeting retailers in the United States. [...]
ASEC Blog publishes Ransom & Dark Web Issues Week 3, May 2025 Pro-Russian hacktivist group Killnet announces resumption of activities. Ransomware group HellCat shuts down operations. Hacktivist...
WizOS is now available in private preview for Wiz customers. It’s a key part of how we help teams start secure and stay secure with hardened, minimal container images.
No, Microsoft has not changed Windows 10 or Microsoft 365 support deadlines. Here's what actually happened.
Weak passwords continue to be a major vulnerability for FTP servers. Specops’ latest report highlights the most frequent…
The password manager's new SaaS monitoring feature offers your business an affordable way to contain the risks of shadow IT and its latest variant - shadow AI.
CISA paused plans to overhaul its advisory system after backlash from the infosec community
Why no one is off the radar anymore
Microsoft on Tuesday shipped fixes to address a total of 78 security flaws across its software lineup, including a set of five zero-days that have come under active exploitation in the wild. Of...
Ransomware gangs have joined ongoing SAP NetWeaver attacks, exploiting a maximum-severity vulnerability that allows threat actors to gain remote code execution on vulnerable servers. [...]
Barracuda’s Managed XDR team recently contained a suspected ransomware attack where the attackers had gained access to a company’s network before it installed XDR, compromising several Windows...
The Australian Human Rights Commission (AHRC) disclosed a data breach incident where private documents leaked online and were indexed by major search engines. [...]
Fortinet and Ivanti published advisories on the same day revealing that attackers are exploiting new zero days, one of which is rated critical
Missing Authorization vulnerability (CVE-2025-4430) has been found in EZD RP software.
Microsoft on Tuesday released software updates to fix at least 70 vulnerabilities in Windows and related products, including five zero-day flaws that are already seeing active exploitation. Adding...
Did Siri record you? Apple is paying $95 million over Siri snooping allegations. Find out if you’re eligible…
Fortinet has observed threat actors exploiting CVE-2025-32756, a critical zero-day arbitrary code execution vulnerability which affects multiple Fortinet products including FortiVoice, FortiMail,...
While appearing unsophisticated on the surface, Chihuahua Stealer uses advanced methods