2025-03-26 • Cisco Talos • Cisco Talos Open article on Malpedia

2025-03-31 • Sekoia • Amaury G., Coline Chavane, Félix Aime, Sekoia TDR • osx.frostyferret Open article on Malpedia

2025-04-02 • Intel 471 • Intel 471 • elf.blackbasta, win.blackbasta Open article on Malpedia

2025-04-04 • Socket • Socket • js.beavertail, py.invisibleferret Open article on Malpedia

2025-04-09 • Europol • Europol • win.smokeloader Open article on Malpedia

Hot on the heels of the CVE-2025-1449 disclosure, a vulnerability in Rockwell Automation software, another critical security issue affecting widely used software products is now drawing the...

U.S. House Committee members have urged the Secretary of the Department of Homeland Security (DHS) not to proceed... The post House Democrats urge DHS secretary to halt reported plan to dismantle...

GenAI boosts productivity but also poses security risks. Palo Alto Networks has a new whitepaper about prompt-based threats and how to defend against them. The post How Prompt Attacks Exploit...

While ransomware attack claims are at an all-time high, financial losses from actual attacks may be reducing

Find out why you should consider using a password manager to protect your data and improve password management.

Members of the U.S. House Committee on Homeland Security reintroduced legislation this week to combat growing cyber threats... The post House Republicans reintroduce bill to counter Chinese cyber...

Ontinue, a provider of AI-powered managed extended detection and response (MXDR) services, announced ION for Enhanced Phishing Protection.... The post Ontinue rolls out ION for improved phishing...

Microsoft has released security fixes to address a massive set of 126 flaws affecting its software products, including one vulnerability that it said has been actively exploited in the wild. Of...

Fortinet has released security patches for a critical vulnerability in its FortiSwitch devices that can be exploited to change administrator passwords remotely. [...]

We are thrilled to announce a Lumen strategic partnership with Google Cloud, a collaboration that promises to transform the landscape of cloud and network solutions. Networks have always been the...

Designed for enterprise security professionals, Google Unified Security brings different tools together in one platform to reduce complexity and confusion.

Hackers exploited a vulnerability in Gladinet CentreStack's secure file-sharing software as a zero-day since March to breach storage servers [...]

Luxembourg, Luxembourg, 9th April 2025, CyberNewsWire

A new vulnerability has been identified in the TP-Link Tapo H200 V1 IoT Smart Hub that could allow attackers to access sensitive information, particularly Wi-Fi credentials. The Computer Emergency...

73% of respondents in an Armis survey said they worried about nation-state actors using AI for cyber-attacks

Microsoft is investigating an ongoing outage that is blocking admins worldwide from accessing the Exchange Admin Center (EAC). [...]

AI is making voice phishing (vishing) more dangerous than ever, with scammers cloning voices in seconds to trick employees into handing over their credentials. Learn how to defend your...

Microsoft says some Windows users might be unable to log into their accounts via Windows Hello after installing the April 2025 security updates. [...]

The advisories say the spyware apps are used to target members of civil society who may oppose China’s state interests.

Phishing actors are employing a new evasion tactic called 'Precision-Validated Phishing' that only shows fake login forms when a user enters an email address that the threat actors specifically...

Microsoft has issued security updates to fix 130+ vulnerabilities this month, including one zero-day

In follow-up activity for Operation Endgame, law enforcement tracked down Smokeloader botnet's customers and detained at least five individuals. [...]

The Cybersecurity and Infrastructure Security Agency (CISA) has recently updated its Known Exploited Vulnerabilities (KEV) Catalog, adding two new vulnerabilities that are actively being exploited...

The UK and allies have warned of new mobile spyware targeting Uyghur, Tibetan and Taiwanese communities

Mismanaging configurations in your multi-cloud environment can put you at an elevated risk for cyber attacks. In the first installment of our “Stronger Cloud Security in Five” blog series, we...