email

July 29, 2025

Lionishackers Exfiltrate Sensitive Corporate Databases for Sale on the Dark Web

Outpost24’s threat intelligence researchers have uncovered the operations of Lionishackers, a financially motivated cyber threat actor specializing in the exfiltration…
Read More »
July 28, 2025

Hackers Exploit Google Forms to Trick Victims into Stealing Cryptocurrency

Cybercriminals are increasingly using Google Forms to plan cryptocurrency theft in a sophisticated evolution of phishing assaults, taking advantage of…
Read More »
July 24, 2025

Elephant APT Group Exploits VLC Player and Encrypted Shellcode in Attacks on Defense Sector

Arctic Wolf Labs has uncovered a sophisticated cyber-espionage operation attributed to the Dropping Elephant advanced persistent threat (APT) group, also…
Read More »
July 24, 2025

Operation CargoTalon Targets Russian Aerospace & Defense to Deploy EAGLET Implant

SEQRITE Labs’ APT-Team has uncovered a sophisticated spear-phishing campaign dubbed Operation CargoTalon, targeting employees at Russia’s Voronezh Aircraft Production Association…
Read More »
July 23, 2025

Iranian Hackers Target Global Airlines to Steal Sensitive Data

APT39, a hacker collective connected to Iran’s Ministry of Intelligence and Security (MOIS), was exposed as operating through the compromised…
Read More »
July 22, 2025

Scavenger Malware Compromises Popular npm Packages to Target Developers

The well-known npm package eslint-config-prettier was released without authorization, according to several GitHub users, even though its repository did not…
Read More »
July 20, 2025

Snake Keylogger Bypasses Windows Defender and Uses Scheduled Tasks to Steal Credentials

Threat actors have been using a sophisticated phishing operation to impersonate Turkish Aerospace Industries (TUSAŞ) in order to attack Turkish…
Read More »
July 19, 2025

New Veeam-Themed Phishing Attack Uses Weaponized WAV File to Target Users

Cybercriminals are now leveraging seemingly innocuous voicemail notifications to distribute malware, with a recent campaign impersonating Veeam Software to exploit…
Read More »
July 19, 2025

Chinese Threat Actors Operate 2,800 Malicious Domains to Distribute Windows Malware

A sophisticated threat actor, dubbed “SilverFox,” has been orchestrating a large-scale malware distribution campaign since at least June 2023, primarily…
Read More »
July 18, 2025

New QR Code Attacks Through PDFs Bypass Detection and Steal Credentials

Researchers at Cyble Research and Intelligence Labs (CRIL) have uncovered an ongoing quishing campaign dubbed “Scanception,” which exploits QR code-based…
Read More »
July 17, 2025

How Threat Actors Embed Malicious JavaScript in Vector Files

Cybersecurity researchers have identified an emerging attack campaign where threat actors are weaponizing Scalable Vector Graphics (SVG) files to deliver…
Read More »
July 17, 2025

Cracked Apps Delivering Infostealers Identified as Leading Attack Vector in June 2025

The AhnLab Security Intelligence Center (ASEC) published a thorough analysis in June 2025 that identified infostealer malware masquerading as keygens…
Read More »
July 11, 2025

Mis-scoped AWS Organizations Policy Allowed Hackers to Seize Full Control of AWS Environment

Security professionals have uncovered serious vulnerabilities in AWS Organizations in a ground-breaking study by Cymulate Research Labs that might allow…
Read More »
July 10, 2025

New “Opossum” Attack Breaches Secure TLS by Injecting Malicious Messages

A newly discovered man-in-the-middle exploit dubbed “Opossum” has demonstrated the unsettling ability to compromise secure communications over Transport Layer Security…
Read More »
July 8, 2025

macOS SMBClient Flaw Enables Remote Code Execution and Kernel Crashes

A critical vulnerability has been discovered in Apple’s macOS SMBClient, exposing millions of users to the risk of remote code…
Read More »
July 5, 2025

SquareX Reveals That Employees Are No Longer The Weakest Link, Browser AI Agents Are

Every security practitioner knows that employees are the weakest link in an organization, butthis is no longer the case. SquareX’s…
Read More »
July 2, 2025

Cybercriminals Use Malicious PDFs to Impersonate Microsoft, DocuSign, and Dropbox in Targeted Phishing Attacks

Cisco’s Talos security team has uncovered a surge in sophisticated phishing campaigns leveraging malicious PDF payloads to impersonate trusted brands…
Read More »
June 30, 2025

Hackers Deliver Remcos Malware Via .pif Files and UAC Bypass in Windows

A sophisticated phishing campaign has emerged, distributing the notorious Remcos Remote Access Trojan (RAT) through the DBatLoader malware. This attack…
Read More »
June 29, 2025

Threat Actors Transform GIFTEDCROOK Stealer into an Intelligence-Gathering Tool

The Arctic Wolf Labs team has uncovered a dramatic transformation in the capabilities of the GIFTEDCROOK infostealer, wielded by the…
Read More »
June 26, 2025

Iranian APT35 Hackers Targeting High-Profile Cybersecurity Experts and Professors in Israel

The Iranian threat group Educated Manticore, also tracked as APT35, APT42, Charming Kitten, or Mint Sandstorm, has intensified its cyber-espionage…
Read More »

Previous page Next page