Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign
Dec 16, 2025Ravie LakshmananMalware / Threat Detection An ongoing campaign has been observed targeting Amazon Web Services (AWS) customers using...
ongoing
ShadowRay 2.0 Exploits Unpatched Ray Flaw to Build Self-Spreading GPU Cryptomining Botnet
Nov 20, 2025Ravie LakshmananVulnerability / Cloud Computing Oligo Security has warned of ongoing attacks exploiting a two-year-old security flaw in...
Russian Hackers Create 4,300 Fake Travel Sites to Steal Hotel Guests’ Payment Data
A Russian-speaking threat behind an ongoing, mass phishing campaign has registered more than 4,300 domain names since the start of...
Smishing Triad Linked to 194,000 Malicious Domains in Global Phishing Operation
Oct 24, 2025Ravie LakshmananData Breach / Cybercrime The threat actors behind a large-scale, ongoing smishing campaign have been attributed to...
WhatsApp Worm Targets Brazilian Banking Customers
Counter Threat Unit™ (CTU) researchers are investigating multiple incidents in an ongoing campaign targeting users of the WhatsApp messaging platform....
LastPass Warns of Fake Repositories Infecting macOS with Atomic Infostealer
Sep 20, 2025Ravie LakshmananSoftware Security / Malware LastPass is warning of an ongoing, widespread information stealer campaign targeting Apple macOS...
Self-Replicating Worm Compromising Hundreds of NPM Packages
An ongoing supply chain attack dubbed "Shai-Hulud" has compromised hundreds of packages in the npm repository with a self-replicating worm...
Ongoing npm Software Supply Chain Attack Exposes New Risks
Last updated 7:00 p.m. ET on September 16, 2025 The post Ongoing npm Software Supply Chain Attack Exposes New Risks...
Empowering Rural Education: Sophos India’s Volunteering Initiative
As part of its ongoing commitment to supporting education in rural schools and uplifting communities, 15 volunteers from Sophos India...
When Missiles Fly, Cyber Threats Follow: How to Prepare in Case of a Cyber Fallout!
Are we truly prepared for what’s coming? Amidst the ongoing geopolitical tensions and the risk of a full-scale conflict, every...
Reducing Remediation Time Remains a Challenge: How Tenable Vulnerability Watch Can Help
Timely vulnerability remediation is an ongoing challenge for organizations as they struggle to prioritize the exposures that represent the greatest...
A Group from North Korea Creates False Crypto Companies in Deceptive Employment Center Scam
For nearly a span of two years, groups focused on threat intelligence have been monitoring the continuing Contagious Interview initiative...
Challenger-in-the-Middle Strikes Endure – Methods to Diminish the Consequence
Challenger-in-the-middle fraud (CiTM) presents a notable, ongoing obstacle for enterprises, with strategies like email hijacking, AI assaults and account seizures...
PlayPraetor Reloaded: CTM360 Reveals a Play Disguised Party
Summary of the PlayPraetor Disguised Party Versions CTM360 has uncovered a significantly wider scope of the continuous Play Praetor initiative....
North Korean Cybercriminals Utilize BeaverTail Malware through 11 Malicious npm Bundles
The cybercriminals from North Korea involved in the persistent Infectious Discussion initiative are expanding their influence on the npm environment...
