The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled, English-language cybercrime forums with millions of users that trafficked in stolen data, hacking...
Morphisec uncovers a new ValleyRAT malware variant with advanced evasion tactics, multi-stage infection chains, and novel delivery methods…
As cloud security evolves in 2025 and beyond, organizations must adapt to both new and evolving realities, including the increasing reliance on cloud infrastructure for AI-driven workflows and the...
Zyxel has issued a security advisory about actively exploited flaws in CPE Series devices, warning that it has no plans to issue fixing patches and urging users to move to actively supported models. [...]
Moscow-based cybersecurity company BI.ZONE posted an analysis of the Nova infostealer as other Russian firms warned about cyber-espionage and threats against industrial facilities.
The monthly update closes 47 security vulnerabilities in total. The post Android security update includes patch for actively exploited vulnerability appeared first on CyberScoop.
As cyber threats continue to evolve and target critical infrastructure, organizations need robust guidelines and solutions to protect their industrial... The post NIST SP 800-82r3: Enhancing OT...
New research from Cyble has revealed the emergence of a new Russian hacktivist group on the dark web... The post Cyble details Russian hacktivist group Sector 16 targeting US oil infrastructure in...
A new campaign dubbed 'SparkCat' has been uncovered, targeting the cryptocurrency wallet recovery phrases of Android and iOS users using optical character recognition (OCR) stealers. [...]
A new campaign dubbed 'SparkCat' has been uncovered, targeting the cryptocurrency wallet recovery phrases of Android and iOS users using optical character recognition (OCR) stealers. [...]
Taiwan has become the latest country to ban government agencies from using Chinese startup DeepSeek's Artificial Intelligence (AI) platform, citing security risks. "Government agencies and...
The following is the information on Yara and Snort rules (week 1, February 2025) collected and shared by the AhnLab TIP service. 14 YARA Rules Detection name Description Source PK_Ameli_sunrise22...
If you want additional ransomware protection on your machine, you should use one that offers thorough scans, a user-friendly interface, and compatibility with your preferred operating system.
DaggerFly’s Lunar Peek campaign is using a new malware strain, identified by FortiGuard Labs, to compromise Linux networks
A security vulnerability has been disclosed in AMD's Secure Encrypted Virtualization (SEV) that could permit an attacker to load a malicious CPU microcode under specific conditions. The flaw,...
A sophisticated phishing campaign targeting Microsoft ADFS has been observed, affecting more than 150 organizations
Picus Security reports infostealer surge after revealing credentials appear in 29% of malware
In a previous Trustwave SpiderLabs’ blog, we explored how cybercriminals exploit Facebook Messenger chatbots to execute social engineering attacks, deceiving users into falling victim to scams and...
Have you ever wished you had an assistant at your security operations centers (SOCs) — especially one who never calls in sick, has a bad day or takes a long lunch? Your wish may come true soon....
Left unchecked, AI's energy and carbon footprint could become a significant concern. Can our AI systems be far less energy-hungry without sacrificing performance?
Shortly after the critical zero-click OLE vulnerability in Microsoft Outlook (CVE-2025-21298), yet another dangerous security threat has come to light. A recently patched privilege escalation...
2025-02-03 • SentinelOne • Phil Stokes, Tom Hegel • osx.friendlyferret, osx.frostyferret Open article on Malpedia
Five Eyes cybersecurity agencies in the UK, Australia, Canada, New Zealand, and the U.S. have issued guidance urging makers of network edge devices and appliances to improve forensic visibility to...
Learn how to protect yourself and your sensitive information from phishing attacks by implementing multi-factor authentication.
Austin, TX, USA, 4th February 2025, CyberNewsWire
A recent whitepaper published by Palo Alto Networks and Siemens revealed that the exploitation of remote services is... The post Palo Alto-Siemens whitepaper flags critical OT vulnerabilities; as...
A Chinese hacking group is hijacking the SSH daemon on network appliances by injecting malware into the process for persistent access and covert operations. [...]
N. Korean ‘FlexibleFerret’ malware targets macOS with fake Zoom apps, job scams, and bug report comments, deceiving users…
2025-02-03 • TEHTRIS • Lefebvre Fabien, Pezier Pierre-Henri • win.satacom Open article on Malpedia
Check Point Research has found over 10 million stolen credentials associated with EMEA organizations exposed on cybercrime markets