threat

SonicWall Confirms State-Sponsored Hackers Behind September Cloud Backup Breach

AndyC 6 November 2025

Nov 06, 2025Ravie LakshmananIncident Response / Cloud Security SonicWall has formally implicated state-sponsored threat actors as behind the September security...

Google Uncovers PROMPTFLUX Malware That Uses Gemini AI to Rewrite Its Code Hourly

AndyC 6 November 2025

Nov 05, 2025Ravie LakshmananArtificial Intelligence / Threat Intelligence Google on Wednesday said it discovered an unknown threat actor using an...

Detecting fraudulent North Korean hires: A CISO playbook

AndyC 6 November 2025

The North Korean worker scheme has expanded into a global threat. Although it originally focused on U.S. technology companies, the...

Mysterious ‘SmudgedSerpent’ Hackers Target U.S. Policy Experts Amid Iran–Israel Tensions

AndyC 6 November 2025

Nov 05, 2025Ravie LakshmananCybersecurity / Cyber Espionage A never-before-seen threat activity cluster codenamed UNK_SmudgedSerpent has been attributed as behind a...

How Ransomware Attacks Leverage Cyber Insurance Policies

AndyC 4 November 2025

Ransomware attacks continue to evolve into sophisticated strategic and psychological operations. Threat actors are always seeking ways to maximize...

Recruitment red flags: Can you spot a spy posing as a job seeker?

AndyC 4 November 2025

Business Security Here’s what to know about a recent spin on an insider threat – fake North Korean IT workers...

Malicious VSX Extension “SleepyDuck” Uses Ethereum to Keep Its Command Server Alive

AndyC 4 November 2025

Nov 03, 2025Ravie LakshmananCryptocurrency / Threat Intelligence Cybersecurity researchers have flagged a new malicious extension in the Open VSX registry...

New HttpTroy Backdoor Poses as VPN Invoice in Targeted Cyberattack on South Korea

AndyC 4 November 2025

Nov 03, 2025Ravie LakshmananCybersecurity / Malware The North Korea-linked threat actor known as Kimsuky has distributed a previously undocumented backdoor...

Nation-State Hackers Deploy New Airstalk Malware in Suspected Supply Chain Attack

AndyC 1 November 2025

Oct 31, 2025Ravie LakshmananMalware / Browser Security A suspected nation-state threat actor has been linked to the distribution of a...

China-Linked Hackers Exploit Windows Shortcut Flaw to Target European Diplomats

AndyC 1 November 2025

Oct 31, 2025Ravie LakshmananMalware / Threat Intelligence A China-affiliated threat actor known as UNC6384 has been linked to a fresh...

CISA and NSA Issue Urgent Guidance to Secure WSUS and Microsoft Exchange Servers

AndyC 1 November 2025

Oct 31, 2025Ravie LakshmananVulnerability / Threat Intelligence The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and National Security Agency (NSA),...

BRONZE BUTLER exploits Japanese asset management software vulnerability

AndyC 31 October 2025

In mid-2025, Counter Threat Unit™ (CTU) researchers observed a sophisticated BRONZE BUTLER campaign that exploited a zero-day vulnerability in Motex...

Threat Actors Weaponizing Open Source AdaptixC2 Tied to Russian Underworld

AndyC 31 October 2025

Threat researchers with cybersecurity firm Silent Push are linking bad actors with heavy ties to the Russian underworld to...

Windows Server Update Services (WSUS) vulnerability abused to harvest sensitive data

AndyC 30 October 2025

Counter Threat Unit™ (CTU) researchers are investigating exploitation of a remote code execution vulnerability (CVE-2025-59287) in Microsoft’s Windows Server Update...

Russian Hackers Target Ukrainian Organizations Using Stealthy Living-Off-the-Land Tactics

AndyC 30 October 2025

Organizations in Ukraine have been targeted by threat actors of Russian origin with an aim to siphon sensitive data and...

threat

Google Uncovers PROMPTFLUX Malware That Uses Gemini AI to Rewrite Its Code Hourly

Detecting fraudulent North Korean hires: A CISO playbook

Mysterious ‘SmudgedSerpent’ Hackers Target U.S. Policy Experts Amid Iran–Israel Tensions

Malicious VSX Extension “SleepyDuck” Uses Ethereum to Keep Its Command Server Alive

New HttpTroy Backdoor Poses as VPN Invoice in Targeted Cyberattack on South Korea

Nation-State Hackers Deploy New Airstalk Malware in Suspected Supply Chain Attack

China-Linked Hackers Exploit Windows Shortcut Flaw to Target European Diplomats

CISA and NSA Issue Urgent Guidance to Secure WSUS and Microsoft Exchange Servers

BRONZE BUTLER exploits Japanese asset management software vulnerability

Windows Server Update Services (WSUS) vulnerability abused to harvest sensitive data

Russian Hackers Target Ukrainian Organizations Using Stealthy Living-Off-the-Land Tactics

A brush with online fraud: What are brushing scams and how do I stay safe?

Revisiting CVE-2025-50165: A critical flaw in Windows Imaging Component

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET Threat Report H2 2025

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Donate Bitcoin to this address

Donate Ethereum to this address

LangChain core vulnerability allows prompt injection and data exposure

Inside the Biggest Cyber Attacks of 2025

NPM package with 56,000 downloads compromises WhatsApp accounts

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

Trust Wallet warns users to update Chrome extension after $7M security loss

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed