Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical Infrastructure
Ravie LakshmananMar 09, 2026Threat Intelligence / Web Security High-value organizations located in South, Southeast, and East Asia have been targeted...
Hacking
Category Added in a WPeMatico Campaign
OpenAI Codex Security Scanned 1.2 Million Commits and Found 10,561 High-Severity Issues
Ravie LakshmananMar 07, 2026DevSecOps / Artificial Intelligence OpenAI on Friday began rolling out Codex Security, an artificial intelligence (AI)-powered security...
Anthropic Finds 22 Firefox Vulnerabilities Using Claude Opus 4.6 AI Model
Ravie LakshmananMar 07, 2026Browser Security / Artificial Intelligence Anthropic on Friday said it discovered 22 new security vulnerabilities in the...
Transparent Tribe Uses AI to Mass-Produce Malware Implants in Campaign Targeting India
Ravie LakshmananMar 06, 2026Threat Intelligence / Cyber Espionage The Pakistan-aligned threat actor known as Transparent Tribe has become the latest...
Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RAT
Cybersecurity researchers have disclosed details of a multi-stage malware campaign that uses batch scripts as a pathway to deliver various...
The MSP Guide to Using AI-Powered Risk Management to Scale Cybersecurity
The Hacker NewsMar 06, 2026Artificial Intelligence / Enterprise Security Scaling cybersecurity services as an MSP or MSSP requires technical expertise...
Iran-Linked MuddyWater Hackers Target U.S. Networks With New Dindoor Backdoor
New research from Broadcom's Symantec and Carbon Black Threat Hunter Team has discovered evidence of an Iranian hacking group embedding...
China-Linked Hackers Use TernDoor, PeerTime, BruteEntry in South American Telecom Attacks
Ravie LakshmananMar 06, 2026Cyber Espionage / Threat Intelligence A China-linked advanced persistent threat (APT) actor has been targeting critical telecommunications...
Microsoft Reveals ClickFix Campaign Using Windows Terminal to Deploy Lumma Stealer
Ravie LakshmananMar 06, 2026Endpoint Security / Browser Security Microsoft on Thursday disclosed details of a new widespread ClickFix social engineering...
Hikvision and Rockwell Automation CVSS 9.8 Flaws Added to CISA KEV Catalog
Ravie LakshmananMar 06, 2026Vulnerability / Network Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security...
Preparing for the Quantum Era: Post-Quantum Cryptography Webinar for Security Leaders
The Hacker NewsMar 05, 2026Encryption / Data Protection Most organizations assume encrypted data is safe. But many attackers are already...
Cisco Confirms Active Exploitation of Two Catalyst SD-WAN Manager Vulnerabilities
Ravie LakshmananMar 05, 2026Vulnerability / Enterprise Security Cisco has disclosed that two more vulnerabilities affecting Catalyst SD-WAN Manager (formerly SD-WAN...
ThreatsDay Bulletin: DDR5 Bot Scalping, Samsung TV Tracking, Reddit Privacy Fine & More
Ravie LakshmananMar 05, 2026Cybersecurity / Hacking News Some weeks in cybersecurity feel routine. This one doesn’t. Several new developments surfaced...
Dust Specter Targets Iraqi Officials with New SPLITDROP and GHOSTFORM Malware
Ravie LakshmananMar 05, 2026Malware / Threat Intelligence A suspected Iran-nexus threat actor has been attributed to a campaign targeting government...
Where Multi-Factor Authentication Stops and Credential Abuse Starts
Organizations typically roll out multi-factor authentication (MFA) and assume stolen passwords are no longer enough to access systems. In Windows...
