attackers

The DocuSign Email That Wasn’t – A Three-Redirect Credential Harvest

AndyC 4 March 2026

TL;DR Attackers sent a convincing DocuSign notification with a “Review & Sign” button that chained through Google Maps redirects...

Vendor News

Stopping real-world attacks: Lessons for business leaders from the 2026 cyber frontline

AndyC 26 February 2026

The 2026 Sophos Active Adversary Report offers an evidence‑based look at how today’s attackers operate in real environments, drawing on...

DMARC Providers in 2026: Top DMARC Services and Enterprise Solutions

Dynamic Objects in Active Directory: The Stealthy Threat

AndyC 21 February 2026

Active Directory’s “dynamic objects” feature offers attackers a perfect evasion cloak. These objects automatically self-destruct without a trace, so...

Facebook ads spread fake Windows 11 downloads that steal passwords and crypto wallets

AndyC 21 February 2026

Attackers are running paid Facebook ads that look like official Microsoft promotions, then directing users to near-perfect clones of...

Master XDR Investigations: A Deep Dive into the GravityZone XDR Demo Incident

AndyC 18 February 2026

An attacker’s initial access, whether through phishing, unmanaged devices, exploited vulnerabilities, or a compromised supply chain, marks the beginning...

Context-Based Attestation: A Practical Approach to High-Confidence Identity Verification

AndyC 18 February 2026

From hiring and onboarding fraud to service desk social engineering, attackers increasingly exploit identity workflows with stolen identities, forged...

CVE-2026-1357: WordPress Plugin RCE Exposes Sites to Full Takeover

AndyC 17 February 2026

A critical vulnerability in the WPvivid Backup & Migration WordPress plugin allows unauthenticated attackers to upload and execute arbitrary PHP files...

A security flaw at DavaIndia Pharmacy allowed attackers to access customers’ data and more

AndyC 17 February 2026

A security flaw at DavaIndia Pharmacy allowed attackers to access customers’ data and more Pierluigi Paganini February 16, 2026 A...

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

AndyC 16 February 2026

Microsoft has disclosed details of a new version of the ClickFix social engineering tactic in which the attackers trick unsuspecting...

Attackers exploit BeyondTrust CVE-2026-1731 within hours of PoC release

AndyC 14 February 2026

Attackers exploit BeyondTrust CVE-2026-1731 within hours of PoC release Pierluigi Paganini February 13, 2026 Attackers quickly targeted BeyondTrust flaw CVE-2026-1731...

ZeroDayRAT spyware grants attackers total access to mobile devices

AndyC 11 February 2026

ZeroDayRAT spyware grants attackers total access to mobile devices Pierluigi Paganini February 10, 2026 ZeroDayRAT is a commercial mobile spyware...

Attackers abuse SolarWinds Web Help Desk to install Zoho agents and Velociraptor

AndyC 10 February 2026

Attackers abuse SolarWinds Web Help Desk to install Zoho agents and Velociraptor Pierluigi Paganini February 09, 2026 Huntress confirmed active...

Polymorphic Viruses: Why They’re Harder to Detect Every Year

AndyC 10 February 2026

Cyber threats rarely stand still. Attackers keep finding new ways to slip past defences, and the polymorphic computer virus is...

Anti-Malware

This Week in Scams: Dating App Breaches, TikTok Data, Grubhub Extortion

AndyC 31 January 2026

This week in scams, three headlines tell the same story: attackers are getting better at manipulating people, not just breaking into...

Beware! Fake ChatGPT browser extensions are stealing your login credentials

PackageGate bugs let attackers bypass protections in NPM, PNPM, VLT, and Bun

AndyC 29 January 2026

PackageGate bugs let attackers bypass protections in NPM, PNPM, VLT, and Bun Pierluigi Paganini January 28, 2026 Koi researchers found...

attackers

The DocuSign Email That Wasn’t – A Three-Redirect Credential Harvest

Stopping real-world attacks: Lessons for business leaders from the 2026 cyber frontline

Dynamic Objects in Active Directory: The Stealthy Threat

Facebook ads spread fake Windows 11 downloads that steal passwords and crypto wallets

CVE-2026-1357: WordPress Plugin RCE Exposes Sites to Full Takeover

A security flaw at DavaIndia Pharmacy allowed attackers to access customers’ data and more

Attackers exploit BeyondTrust CVE-2026-1731 within hours of PoC release

ZeroDayRAT spyware grants attackers total access to mobile devices

Attackers abuse SolarWinds Web Help Desk to install Zoho agents and Velociraptor

Polymorphic Viruses: Why They’re Harder to Detect Every Year

This Week in Scams: Dating App Breaches, TikTok Data, Grubhub Extortion

PackageGate bugs let attackers bypass protections in NPM, PNPM, VLT, and Bun

This month in security with Tony Anscombe – February 2026 edition

Mobile app permissions (still) matter more than you may think

Faking it on the phone: How to tell if a voice call is AI or not

PromptSpy ushers in the era of Android threats using GenAI

Is Poshmark safe? How to buy and sell without getting scammed

Is it OK to let your children post selfies online?

Donate Bitcoin to this address

Donate Ethereum to this address

The Worm Turns – When the Hunter Becomes the Hunted Mass Surveillance and the Weaponization of the Data We Voluntarily Create

CISA Adds Actively Exploited VMware Aria Operations Flaw CVE-2026-22719 to KEV Catalog

The DocuSign Email That Wasn’t – A Three-Redirect Credential Harvest

Post-Quantum Cryptographic Agility for Distributed AI Inference Architectures

NCSC Warns UK Organisations to Prepare for Potential Iran-Linked Cyber Activity

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed