Dec

Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

AndyC 20 December 2025

Dec 19, 2025Ravie LakshmananCybersecurity / Cloud Security A suspected Russia-aligned group has been attributed to a phishing campaign that employs...

WatchGuard Warns of Active Exploitation of Critical Fireware OS VPN Vulnerability

AndyC 20 December 2025

Dec 19, 2025Ravie LakshmananVulnerability / Network Security WatchGuard has released fixes to address a critical security flaw in Fireware OS...

Nigeria Arrests RaccoonO365 Phishing Developer Linked to Microsoft 365 Attacks

AndyC 20 December 2025

Dec 19, 2025Ravie LakshmananCybercrime / Law Enforcement Authorities in Nigeria have announced the arrest of three "high-profile internet fraud suspects"...

New UEFI Flaw Enables Early-Boot DMA Attacks on ASRock, ASUS, GIGABYTE, MSI Motherboards

AndyC 20 December 2025

Dec 19, 2025Ravie LakshmananFirmware Security / Vulnerability Certain motherboard models from vendors like ASRock, ASUSTeK Computer, GIGABYTE, and MSI are...

China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware

AndyC 19 December 2025

Dec 18, 2025Ravie LakshmananMalware / Cloud Security A previously undocumented China-aligned threat cluster dubbed LongNosedGoblin has been attributed to a...

HPE OneView Flaw Rated CVSS 10.0 Allows Unauthenticated Remote Code Execution

AndyC 19 December 2025

Dec 18, 2025Ravie LakshmananVulnerability / Enterprise Security Hewlett Packard Enterprise (HPE) has resolved a maximum-severity security flaw in OneView Software...

ThreatsDay Bulletin: WhatsApp Hijacks, MCP Leaks, AI Recon, React2Shell Exploit and 15 More Stories

AndyC 19 December 2025

Dec 18, 2025Ravie LakshmananCybersecurity / Hacking News This week's ThreatsDay Bulletin tracks how attackers keep reshaping old tools and finding...

Kimsuky Spreads DocSwap Android Malware via QR Phishing Posing as Delivery App

AndyC 19 December 2025

Dec 18, 2025Ravie LakshmananMalware / Mobile Security The North Korean threat actor known as Kimsuky has been linked to a...

CISA Flags Critical ASUS Live Update Flaw After Evidence of Active Exploitation

AndyC 18 December 2025

Dec 18, 2025Ravie LakshmananVulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical...

Cisco Warns of Active Attacks Exploiting Unpatched 0-Day in AsyncOS Email Security Appliances

AndyC 18 December 2025

Dec 18, 2025Ravie LakshmananVulnerability / Network Security Cisco has alerted users to a maximum-severity zero-day flaw in Cisco AsyncOS software...

SonicWall Fixes Actively Exploited CVE-2025-40602 in SMA 100 Appliances

AndyC 18 December 2025

Dec 17, 2025Ravie LakshmananVulnerability / Network Security SonicWall has rolled out fixes to address a security flaw in Secure Mobile...

APT28 Targets Ukrainian UKR-net Users in Long-Running Credential Phishing Campaign

AndyC 18 December 2025

Dec 17, 2025Ravie LakshmananEmail Security / Threat Intelligence The Russian state-sponsored threat actor known as APT28 has been attributed to...

New ForumTroll Phishing Attacks Target Russian Scholars Using Fake eLibrary Emails

AndyC 18 December 2025

Dec 17, 2025Ravie LakshmananVulnerability / Malware The threat actor linked to Operation ForumTroll has been attributed to a fresh set...

GhostPoster Malware Found in 17 Firefox Add-ons with 50,000+ Downloads

AndyC 18 December 2025

Dec 17, 2025Ravie LakshmananAd Fraud / Browser Security A new campaign named GhostPoster has leveraged logo files associated with 17...

Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign

AndyC 17 December 2025

Dec 16, 2025Ravie LakshmananMalware / Threat Detection An ongoing campaign has been observed targeting Amazon Web Services (AWS) customers using...

Dec

WatchGuard Warns of Active Exploitation of Critical Fireware OS VPN Vulnerability

Nigeria Arrests RaccoonO365 Phishing Developer Linked to Microsoft 365 Attacks

New UEFI Flaw Enables Early-Boot DMA Attacks on ASRock, ASUS, GIGABYTE, MSI Motherboards

HPE OneView Flaw Rated CVSS 10.0 Allows Unauthenticated Remote Code Execution

ThreatsDay Bulletin: WhatsApp Hijacks, MCP Leaks, AI Recon, React2Shell Exploit and 15 More Stories

Kimsuky Spreads DocSwap Android Malware via QR Phishing Posing as Delivery App

CISA Flags Critical ASUS Live Update Flaw After Evidence of Active Exploitation

Cisco Warns of Active Attacks Exploiting Unpatched 0-Day in AsyncOS Email Security Appliances

SonicWall Fixes Actively Exploited CVE-2025-40602 in SMA 100 Appliances

APT28 Targets Ukrainian UKR-net Users in Long-Running Credential Phishing Campaign

New ForumTroll Phishing Attacks Target Russian Scholars Using Fake eLibrary Emails

GhostPoster Malware Found in 17 Firefox Add-ons with 50,000+ Downloads

Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET Threat Report H2 2025

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Donate Bitcoin to this address

Donate Ethereum to this address

Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says

Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

Microsoft 365 accounts targeted in wave of OAuth phishing attacks

State-linked and criminal hackers use device code phishing against M365 users

Three ways teams can tackle Iran’s tangled web of state-sponsored espionage

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed