Romance scams cost victims hundreds of millions of dollars a year. As people grow increasingly isolated, and generative AI helps scammers scale their crimes, the problem could get worse.
Espionage actor may be moonlighting as RA World attacker.
In 2024, Barracuda Managed XDR logged many trillions of IT events to identify the critical security threats targeting organizations and neutralize malicious activity. Threat analysts in Barracuda...
SecurityScorecard has uncovered a sophisticated campaign linked to North Korea’s Lazarus Group, distributing crypto-stealing malware
2025-02-11 • EclecticIQ • Arda Büyükkaya • ps1.kalambur, win.backorder Open article on Malpedia
2025-02-12 • Microsoft • Microsoft Threat Intelligence • asp.localolive Open article on Malpedia
Some detectors are better at spotting AI-written text than others. Here's why these mixed results matter.
The virtual treasure chests and other casino-like rewards inside your children’s games may pose risks you shouldn’t play down
2025-02-11 • CyberSecurityNews • Do Son • win.dcrat Open article on Malpedia
2025-02-12 • The Hacker News • Ravie Lakshmanan Open article on Malpedia
2025-02-12 • Bleeping Computer • Bill Toulas Open article on Malpedia
Threat intelligence firm Recorded Future said it had observed Salt Typhoon breaching 5 telcos between December 2024 and January 2025. © 2024 TechCrunch. All rights reserved. For personal use only.
A China-based threat actor, tracked as Emperor Dragonfly and commonly associated with cybercriminal endeavors, has been observed using in a ransomware attack a toolset previously attributed to...
2025-02-11 • Twitter (@MsftSecIntel) • Microsoft Threat Intelligence Open article on Malpedia
The open-source LLM known as DeepSeek has attracted much attention in recent weeks with the release of DeepSeek V3 and DeepSeek R1, and in this blog, The Tenable Security Response Team answers...
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 7.2 ATTENTION: Low attack complexity Vendor: Qardio Equipment: Heart Health IOS application, Heart Health Android Application, QardioARM A100...
Despite high-profile attention and even US sanctions, the group hasn’t stopped or even slowed its operation, including the breach of two more US telecoms.
Discover the latest threat intelligence outlooks for 2025, including AI-enabled phishing, SaaS attacks, and executive-targeted cyber threats. Learn key strategies to protect your organization from...
Explore intelligence reports from Recorded Future's Insikt Group at the 2025 Munich Security Conference. Key topics include Taiwan invasion risk, Russian influence in German elections, RedMike...
Discover how Russia-linked influence operations, including Doppelgänger and Operation Overload, are attempting to undermine Germany's 2025 elections. Learn about their tactics, impacts, and how to...
Discover how Chinese state-sponsored group RedMike exploited unpatched Cisco devices, targeting telecommunications providers globally. Learn about vulnerabilities CVE-2023-20198 and...
Learn how North Korea’s IT workers infiltrate global companies, posing cybersecurity threats, committing fraud, and supporting the regime. Discover key findings and mitigation strategies to...
The BadPilot campaign operates as a horizontally scalable cyber operation, compromising a wide range of internet-facing systems using publicly available exploits. The subgroup conducts broad...
Massive 1.17 TB data leak exposes billions of records from a Chinese IoT grow light company. Wi-Fi passwords,…
A subgroup within the infamous Russian state-sponsored hacking group known as Sandworm has been attributed to a multi-year initial access operation dubbed BadPilot that stretched across the globe....
“The vast cybercriminal ecosystem has acted as an accelerant for state-sponsored hacking, providing malware, vulnerabilities, and in some cases full-spectrum operations to states,” said Ben Read...
The attack has impacted casinos, health services, tribal administration and credit card payments at stores in the area.
February’s report on Microsoft patches includes 56 vulnerabilities, two of which are zero-day flaws that have been exploited.
Check out this FAQ-style blog on questions we received about Malware Detection for Barracuda Cloud-to-Cloud Backup at our recent webinar.
Sponsored by accessiBe