exploiting

Interlock group exploiting the CISCO FMC flaw CVE-2026-20131 36 days before disclosure

Interlock group exploiting the CISCO FMC flaw CVE-2026-20131 36 days before disclosure

AndyC 20 March 2026

Interlock group exploiting the CISCO FMC flaw CVE-2026-20131 36 days before disclosure Pierluigi Paganini March 19, 2026 The Interlock ransomware...

Read More

Fake Claude Code Spreads Malware to Windows, macOS Users

Fake Claude Code Spreads Malware to Windows, macOS Users

AndyC 11 March 2026

Image: Rawpixel/Envato Threat actors are exploiting a common developer habit — copying installation commands directly from websites — to distribute...

Read More

Microsoft warns of ClickFix campaign exploiting Windows Terminal to deliver Lumma Stealer

Microsoft warns of ClickFix campaign exploiting Windows Terminal to deliver Lumma Stealer

AndyC 7 March 2026

Microsoft warns of ClickFix campaign exploiting Windows Terminal to deliver Lumma Stealer Pierluigi Paganini March 06, 2026 Microsoft warns of...

Read More

BeyondTrust Flaw Used for Web Shells, Backdoors, and Data Exfiltration

BeyondTrust Flaw Used for Web Shells, Backdoors, and Data Exfiltration

AndyC 21 February 2026

Ravie LakshmananFeb 20, 2026Vulnerability / Cyber Attack Threat actors have been observed exploiting a recently disclosed critical security flaw impacting...

Read More

Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package

Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package

AndyC 4 February 2026

Ravie LakshmananFeb 03, 2026Open Source / Vulnerability Threat actors have been observed exploiting a critical security flaw impacting the Metro...

Read More

Move fast and save things: A quick guide to recovering a hacked account

Move fast and save things: A quick guide to recovering a hacked account

AndyC 21 March 2026

Cybercriminals go after people’s personal information across every kind of online platform, including WhatsApp, Instagram, LinkedIn, Roblox, YouTube and Spotify, not to mention finance apps....

Read More

EDR killers explained: Beyond the drivers

EDR killers explained: Beyond the drivers

AndyC 20 March 2026

In recent years, EDR killers have become one of the most commonly seen tools in modern ransomware intrusions: an attacker acquires high privileges, deploys such...

Read More

Face value: What it takes to fool facial recognition

Face value: What it takes to fool facial recognition

AndyC 14 March 2026

ESET’s Jake Moore used smart glasses, deepfakes and face swaps to ‘hack’ widely-used facial recognition systems – and he'll demo it all at RSAC 2026...

Read More

Cyber fallout from the Iran war: What to have on your radar

Cyber fallout from the Iran war: What to have on your radar

AndyC 13 March 2026

The war in Iran was less than 24 hours old when it produced a historic first: the deliberate targeting of commercial data centers. On March...

Read More

Sednit reloaded: Back in the trenches

Sednit reloaded: Back in the trenches

AndyC 11 March 2026

Since April 2024, Sednit’s advanced development team has reemerged with a modern toolkit centered on two paired implants, BeardShell and Covenant, each using a different...

Read More

What cybersecurity actually does for your business

What cybersecurity actually does for your business

AndyC 7 March 2026

Business Security The ability to continue operating safely in an unsafe environment where competitors cannot is a competitive advantage that is rarely measured or discussed...

Read More

WorldLeaks ransomware group breached the City of Los Angels

WorldLeaks ransomware group breached the City of Los Angels

AndyC 22 March 2026

FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks

FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks

AndyC 22 March 2026

Real Attack Alert Analysis: From Hidden Indicators to Actionable Threat Intelligence

Real Attack Alert Analysis: From Hidden Indicators to Actionable Threat Intelligence

AndyC 22 March 2026

Security Blogs

PolyShell flaw exposes Magento and Adobe Commerce to file upload attacks

AndyC 22 March 2026

Magazine Insights

MY TAKE: As RSAC 2026 opens, AI has bifurcated cybersecurity into two wars—the clock is running

AndyC 22 March 2026