Here's what to know about malware that raids email accounts, web browsers, crypto wallets, and more – all in a quest for your sensitive data
Security community reacts with shock at US government’s decision not to renew MITRE contract for CVE database
Security community reacts with shock at US government’s decision not to renew MITRE contract for CVE database
2025-04-15 • SecurityWeek • The Associated Press Open article on Malpedia
2025-04-15 • sysdig • Alessandra Rizzo • elf.snowlight Open article on Malpedia
2025-04-15 • Checkpoint • Checkpoint Research • win.grapeloader, win.wineloader Open article on Malpedia
Microsoft warned customers this week that their systems might crash with a blue screen error caused by a secure kernel fatal error after installing Windows updates released since March. [...]
Microsoft is working to fix an ongoing issue causing some users' Windows devices to be offered Windows 11 upgrades despite Intune policies preventing them. [...]
A critical resource that cybersecurity professionals worldwide rely on to identify, mitigate and fix security vulnerabilities in software and hardware is in danger of breaking down. The federally...
MITRE Vice President Yosry Barsoum has warned that U.S. government funding for the Common Vulnerabilities and Exposures (CVE) and Common Weakness Enumeration (CWE) programs expires today, which...
The MITRE Corporation said on Tuesday that its stewardship of the CVE program may be ending this week because the federal government has decided not to renew its contract with the nonprofit.
Learn how Recorded Future's brand refresh, powered by AI and actionable threat intelligence, helps teams evolve with the next generation of cybersecurity.
UNC5174, a suspected Chinese state-sponsored threat actor, has resurfaced in a stealthy espionage campaign targeting Linux systems across research institutions, government agencies, NGOs, and...
CrazyHunter is a newly emerged ransomware group that has rapidly gained attention for its focused attacks on Taiwan’s critical sectors, particularly healthcare, education, and manufacturing. The...
A lawsuit over the Trump administration's infamous Houthi Signal group chat has revealed what steps departments took to preserve the messages—and how little they actually saved.
MITRE’s CVE program has been an important pillar in cybersecurity for over two decades. The lack of certainty surrounding the future of the CVE program creates great uncertainty about how newly...
Keeping up with crypto tax laws in Europe feels like a constant hurdle. Regulations evolve, tax authorities demand…
The update comes months after Apple pushed its own “inactivity reboot” feature.
A Gartner distinguished VP analyst offers TechRepublic readers advice about which early-stage technologies that will define the future of business systems to prioritize.
Intelligence from encrypted platforms like Sky ECC and ANOM has led to the arrest of 232 individuals and…
4chan is down amid claims from a rival Soyjak forum user who says they’ve breached the site and…
The China-linked threat actor known as UNC5174 has been attributed to a new campaign that leverages a variant of a known malware dubbed SNOWLIGHT and a new open-source tool called VShell to infect...
Though the exact details of the situation have not been confirmed, community infighting seems to have spilled out in a breach of the notorious image board.
A critical security vulnerability has been disclosed in the Apache Roller open-source, Java-based blogging server software that could allow malicious actors to retain unauthorized access even...
Cybersecurity researchers have disclosed a malicious package uploaded to the Python Package Index (PyPI) repository that's designed to reroute trading orders placed on the MEXC cryptocurrency...
China on Tuesday accused three alleged employees of the U.S. National Security Agency of carrying out cyberattacks on the Asian Winter Games in February.
Earlier this year 18-year-old Alan Filion who was sentenced to four years in federal prison for ‘making interstate threats to injure others.’ Alan put himself in this position by conducting 375...
Code-generating large language models (LLMs) have introduced a new security issue into software development: Code package hallucinations. Package hallucinations occur when an LLM generates code...
The allegations, supported by the foreign ministry, are more specific and aggressive than usual and say the U.S. sought to disrupt the Asian Winter Games. The post Chinese law enforcement places...
CloudSEK uncovers a sophisticated malware campaign where attackers impersonate PDFCandy.com to distribute the ArechClient2 information stealer. Learn how…