Threat actors are taking advantage of the rise in popularity of the DeepSeek to promote two malicious infostealer packages on the Python Package Index (PyPI), where they impersonated developer...
A Russian-speaking cybercrime gang known as Crazy Evil has been linked to over 10 active social media scams that leverage a wide range of tailored lures to deceive victims and trick them into...
A new Europol report warns of major challenges accessing and analyzing data for cybercrime investigations
Understanding cybersecurity can sometimes feel like steering a maze of technical terms and complex systems. But a recent infographic shared by @yanabantai on X (formerly Twitter) has made it...
The UK government has launched a new AI security code of practice it believes will become an ETSI standard
Shift5, the observability platform for onboard operational technology (OT), announced that it has been awarded a contract under... The post Shift5 strengthens defense partnership with SeaPort-NxG...
Corporate Security Advisors (CSA), a management consulting firm specializing in corporate security, announced that it has been selected... The post CSA selected by American Hospital Association to...
Exposure management company Tenable Holdings announced that it has signed a definitive agreement to acquire Vulcan Cyber, an... The post Tenable Holdings to acquire Vulcan Cyber for $147 million,...
This is a weekly threat intelligence report review from RST Cloud. This week, we analysed 51 threat intelligence articles and prepared a concise summary of the findings, including the relevant...
Researchers discovered a sophisticated attack initiated through social engineering on LinkedIn and WhatsApp, leading to credential theft via seemingly benign code downloads. With stolen session...
The Python Package Index (PyPI) has announced the introduction of 'Project Archival,' a new system that allows publishers to archive their projects, indicating to the users that no updates are to...
As the OT and ICS cybersecurity landscape continues to evolve, so does the role of women as they... The post Evolving role of women in OT/ICS cybersecurity, as S4x25 and BSides for ICS 2025...
In an exclusive interview for the Hall of Fame series, Industrial Cyber spoke with Sarah Freeman, chief engineer... The post Hall of Fame – Industrial Cybersecurity Engineer Sarah Freeman appeared...
U.S. senator says Musk's access to Treasury systems represents a "national security risk." © 2024 TechCrunch. All rights reserved. For personal use only.
The Importance of Balancing Cost and Security!
WhatsApp recently revealed a targeted spyware campaign linked to the Israeli firm Paragon, which affected 90 individuals, including…
U.S. and Dutch law enforcement agencies have announced that they have dismantled 39 domains and their associated servers as part of efforts to disrupt a network of online marketplaces originating...
Researchers uncover a double-entry website skimming attack targeting Casio and 16 other sites. Learn how cybercriminals exploited vulnerabilities to steal sensitive payment data and evade detection.
Multiple state-sponsored groups are experimenting with the AI-powered Gemini assistant from Google to increase productivity and to conduct research on potential infrastructure for attacks or for...
BeyondTrust has revealed it completed an investigation into a recent cybersecurity incident that targeted some of the company's Remote Support SaaS instances by making use of a compromised API...
Plus: WhatsApp discloses nearly 100 targets of spyware, hackers used the AT&T breach to hunt for details on US politicians, and more.
2025-01-27 • The DFIR Report • MittenSec, MyDFIR, r3nzsec • win.ghostsocks, win.lockbit, win.systembc Open article on Malpedia
2025-01-27 • SecurityScorecard • STRIKE Team Open article on Malpedia
2025-01-28 • Twitter (@anyrun_app) • ANY.RUN • elf.systembc Open article on Malpedia
2025-01-30 • Bitdefender • Martin Zugec • vbs.hatvibe Open article on Malpedia
Meta-owned WhatsApp on Friday said it disrupted a campaign that involved the use of spyware to target journalists and civil society members. The campaign, which targeted around 90 members,...
Cybersecurity researchers have discovered a malvertising campaign that's targeting Microsoft advertisers with bogus Google ads that aim to take them to phishing pages that are capable of...
AI-generated content is empowering even novice hackers to elevate phishing attacks, enabling highly personalized and convincing scams targeting…
Reps. Nancy Mace and Shontel Brown reintroduced VDP legislation after the 2024 bipartisan, bicameral bill didn’t get a full Senate vote. The post Bill requiring federal contractors to have...
Connecticut’s Community Health Center Inc. and California’s NorthBay Healthcare Corporation reported intrusions that exposed the data of hundreds of thousands of patients.