credential

December 17, 2025

Russian Hackers Launch Attacks on Network Edge Devices in Western Critical Infrastructure

Russian state-sponsored hackers have intensified their attacks on misconfigured network edge devices across Western critical infrastructure, marking a significant shift…
Read More »
December 16, 2025

Link11 Identifies Five Cybersecurity Trends Shaping European Defense Strategies in 2026

Link11, a leading European provider of web infrastructure security solutions, has released new insights highlighting five key cybersecurity developments that…
Read More »
December 16, 2025

SantaStealer Malware Steals Sensitive Files, Credentials, and Crypto Wallet Data

Cybersecurity researchers at Rapid7 Labs have discovered a new and sophisticated threat: SantaStealer, a malware-as-a-service information stealer that is being…
Read More »
December 16, 2025

PCPcat Malware Leverages React2Shell Vulnerability to Breach 59,000+ Servers

A sophisticated attack campaign attributed to a group identifying as “PCP” has compromised 59,128 servers in less than 48 hours…
Read More »
December 12, 2025

New DroidLock Malware Locks Android Devices and Demands Ransom Payment

A new and sophisticated threat campaign has been identified by the zLabs research team, targeting Spanish Android users with a…
Read More »
December 11, 2025

Threat Actors Exploit ChatGPT and Grok Conversations to Deliver AMOS Stealer

The cybersecurity landscape has reached a critical juncture, marked by a sophisticated campaign that leverages the Atomic macOS Stealer (AMOS)…
Read More »
December 11, 2025

AI-Powered Analysis Exposes Massive 5,000-Domain Chinese Malware Operation

DomainTools Investigations has uncovered critical findings regarding the expansion of a massive malware-delivery network targeting Chinese-speaking users worldwide, which has…
Read More »
December 10, 2025

Makop Ransomware Evolves with Advanced Evasion Techniques and Exploit Arsenal

Makop, a ransomware strain derived from Phobos, continues to pose a significant threat by exploiting exposed Remote Desktop Protocol (RDP)…
Read More »
November 28, 2025

Microsoft Blocks External Scripts in Entra ID Logins to Boost Security

Microsoft has announced a significant security change to the Microsoft Entra ID sign-in experience that will block external scripts from…
Read More »
November 26, 2025

A Novel Exploit Leveraging URL Fragments To Deceive AI Browsers

Security researchers at Cato CTRL have uncovered HashJack. This innovative indirect prompt-injection attack hides harmful commands in the fragment portion…
Read More »
November 26, 2025

Cobalt Strike 4.12 Adds New Injection, UAC Bypasses & C2 Features

Fortra has officially released Cobalt Strike 4.12, introducing a comprehensive suite of new features designed to enhance red team operations and…
Read More »
November 24, 2025

Zapier’s NPM Account Hacked, Multiple Packages Infected with Malware

Zapier’s NPM account has been successfully compromised, leading to the injection of the Shai Hulud malware into 425 packages currently…
Read More »
November 23, 2025

Tycoon2FA Launches Nearly 1 Million Attacks Targeting Office 365 Accounts

Tycoon2FA, a sophisticated phishing-as-a-service platform tracked by Microsoft as Storm-1747, has emerged as the dominant threat targeting Office 365 accounts…
Read More »
November 14, 2025

Analysis of Multi-Stage Phishing Kits Leveraging Telegram for Credential Theft and Evasion Techniques

Researchers at Group-IB have uncovered a sophisticated phishing framework that demonstrates how cybercriminals are industrializing credential theft through automation, evasion…
Read More »
November 12, 2025

AppleScript Used to Deliver macOS Malware Disguised as Zoom & Teams Updates

Since Apple removed the popular “right-click and open” Gatekeeper override in August 2024, threat actors have shifted their tactics to…
Read More »
November 11, 2025

Ferocious Kitten APT Uses MarkiRAT for Keystroke and Clipboard Surveillance

Ferocious Kitten, a covert cyber-espionage group active since at least 2015, has emerged as a persistent threat to Persian-speaking dissidents…
Read More »
November 11, 2025

Android Users Hit by Malware Disguised as Relaxation Programs

A sophisticated new cyberattack targeting Android devices in South Korea has been uncovered, leveraging Google’s asset-tracking feature, Find Hub, to…
Read More »
November 9, 2025

Weaponized Videos Trigger Self-Infection Tactics

ClickFix attacks have surged dramatically over the past year, cementing their position as pivotal tools in the modern attacker’s arsenal.…
Read More »
November 4, 2025

Tactics Targeting M365 and Gmail

The Tycoon 2FA phishing kit represents one of the most sophisticated threats targeting enterprise environments today. This Phishing-as-a-Service (PhaaS) platform,…
Read More »
November 2, 2025

CISA Alerts on Linux Kernel Vulnerability Exploited in Ransomware Attacks

The U.S. Cybersecurity and Infrastructure Security Agency has added a critical Linux kernel vulnerability to its Known Exploited Vulnerabilities catalog,…
Read More »

Previous page Next page