The CERT-UA investigation concluded that the attack’s techniques were “characteristic of Russian intelligence services”
KEY TAKEAWAYS Go language (Golang) is increasing in popularity with developers of both legitimate and malicious tooling. Volexity frequently encounters malware samples written in Golang that apply...
A new attack targeting Microsoft Teams users used vishing, remote access tools and DLL sideloading to deploy a JavaScript backdoor
A RAR file, a fake summons, and a Nietzsche quote—all part of a multi-stage malware chain delivering DCRat & Rhadamanthys. Acronis TRU breaks down how attackers use VBS, batch, and PowerShell...
The russia-linked Gamaredon APT notorious for a wealth of cyber-offensive operations against Ukraine resurfaces in the cyber threat arena. The ongoing Gamaredon adversary campaign against Ukraine...
The new feature is more accessible than S/MIME because it eliminates the need for certificate management.
Sending encrypted emails today involves a nightmare of certificates and administrative headaches. Google says it's ready to make things easier.
Google is set to roll out end-to-end encryption for all Gmail users, boosting security, compliance and data sovereignty efforts
After decades of struggle, ransomware gangs have finally been vanquished
Autorité de la concurrence, France's antitrust watchdog, has fined Apple €150 million ($162 million) for using the App Tracking Transparency privacy framework to abuse its dominant market position...
Your friends and family members are just waiting to be exploited by online attackers. They need your help.
Written by: Jamie Collier Since our September 2024 report outlining the Democratic People's Republic of Korea (DPRK) IT worker threat, the scope and scale of their operations has continued to...
A vishing scam via Microsoft Teams led to attackers misusing TeamViewer to drop malware and stay hidden using simple but effective techniques.
Apple has been hit with a fine of €150 million ($162 million) by France's competition watchdog over the implementation of its App Tracking Transparency (ATT) privacy framework. The Autorité de la...
BlueVoyant found that the use of lookalike domains in email-based attacks is allowing actors to extend the types of individuals and organizations being targeted
Want to avoid having your online accounts hacked? Two-factor authentication is a crucial security measure that requires an extra step for signing in to high-value services. Here's how to set up...
The cryptocurrency world feels like a wild ride full of risks, twists, and big dreams of building wealth.…
Google has started rolling out a new end-to-end encryption (E2EE) model for Gmail enterprise users, making it easier to send encrypted emails to any recipient. [...]
A significant spike in scanning activity targeting Palo Alto Network GlobalProtect login portals has been observed, with researchers concerned it may be a prelude to an upcoming attack or flaw...
The Microsoft Fabric Community Conference, currently underway from March 31 to April 2, 2025, in Las Vegas, has already become a major event for data professionals and AI enthusiasts alike. With...
Phishing with QR codes: New tactics described here include concealing links with redirects and using Cloudflare Turnstile to evade security crawlers. The post Evolution of Sophisticated Phishing...
One missed update turned my website into a hacker's playground and another locked me out of my own business tools. Here's why skipping software updates isn't worth the risk.
Tenable Research discovered a privilege escalation vulnerability in Google Cloud Platform (GCP) that is now fixed and which we dubbed ImageRunner. At issue are identities that lack registry...
Xiaofeng Wang, a well-respected computer scientist and professor at Indiana University, has suddenly vanished along with his wife, Nianli Ma. The couple’s disappearance has raised a multitude of...
Apple has released security updates that backport fixes for actively exploited vulnerabilities that were exploited as zero-days to older versions of its operating systems. [...]
Phishing scams are getting brutally effective, and even technically sophisticated people can get fooled. Here's how to limit the damage right away, and what to do next.
Don't fall victim to the 'small target illusion.' Learn how cybercriminals exploit SMBs so you can fix your security gaps before it's too late.
For the latest discoveries in cyber research for the week of 31st March, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES New York University (NYU) suffered a...
What happens when you get fooled by an online scam that lands in your email or text messages? I'll show you. Caution: Don't try this at home.
Attackers are now targeting a critical authentication bypass vulnerability in the CrushFTP file transfer software using exploits based on publicly available proof-of-concept code. [...]