threat

10 npm Packages Caught Stealing Developer Credentials on Windows, macOS, and Linux

AndyC 30 October 2025

Oct 29, 2025Ravie LakshmananMalware / Threat Intelligence Cybersecurity researchers have discovered a set of 10 malicious npm packages that are...

Researchers Expose GhostCall and GhostHire: BlueNoroff’s New Malware Chains

AndyC 29 October 2025

Threat actors tied to North Korea have been observed targeting the Web3 and blockchain sectors as part of twin campaigns...

Weekly Update 475

AndyC 26 October 2025

26 October 2025 It was the Synthient threat data that ate most of my time this week, and it continues...

Smishing Triad Linked to 194,000 Malicious Domains in Global Phishing Operation

AndyC 25 October 2025

Oct 24, 2025Ravie LakshmananData Breach / Cybercrime The threat actors behind a large-scale, ongoing smishing campaign have been attributed to...

APT36 Targets Indian Government with Golang-Based DeskRAT Malware Campaign

AndyC 25 October 2025

Oct 24, 2025Ravie LakshmananCyber Espionage / Malware A Pakistan-nexus threat actor has been observed targeting Indian government entities as part...

North Korean Hackers Lure Defense Engineers With Fake Jobs to Steal Drone Secrets

AndyC 24 October 2025

Oct 23, 2025Ravie LakshmananCyber Espionage / Threat Intelligence Threat actors with ties to North Korea have been attributed to a...

Critical Lanscope Endpoint Manager Bug Exploited in Ongoing Cyberattacks, CISA Confirms

AndyC 23 October 2025

Oct 23, 2025Ravie LakshmananVulnerability / Threat Intelligence The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical...

Smashing Security podcast #440: How to hack a prison, and the hidden threat of online checkouts

AndyC 23 October 2025

A literal insider threat: we head to a Romanian prison where “self-service” web kiosks allowed inmates to run wild. Then...

Russia’s Coldriver Ramps Up Malware Development After LostKeys Exposure

AndyC 23 October 2025

Google threat researchers in May disclosed LostKeys, a malware used by the Russia state-sponsored cyber-espionage group Coldriver, which has...

Dataminr to Acquire Cybersecurity Firm ThreatConnect in 0M Deal

Dataminr to Acquire Cybersecurity Firm ThreatConnect in $290M Deal

AndyC 23 October 2025

Image: Adobe Stock AI-powered threat intelligence company Dataminr has announced plans to acquire cybersecurity firm ThreatConnect in a deal valued...

Google Identifies Three New Russian Malware Families Created by COLDRIVER Hackers

AndyC 22 October 2025

Oct 21, 2025Ravie LakshmananCyber Espionage / Threat Intelligence A new malware attributed to the Russia-linked hacking group known as COLDRIVER...

Suspected Chinese Hackers Spent a Year-Plus Inside F5 Systems: Report

AndyC 21 October 2025

The Chinese state-sponsored threat actors believed to be behind the high-profile hack of F5’s corporate networks reportedly infiltrated the security...

Silver Fox Expands Winos 4.0 Attacks to Japan and Malaysia via HoldingHands RAT

AndyC 18 October 2025

The threat actors behind a malware family known as Winos 4.0 (aka ValleyRAT) have expanded their targeting footprint from China...

North Korean Hackers Combine BeaverTail and OtterCookie into Advanced JS Malware

AndyC 18 October 2025

The North Korean threat actor linked to the Contagious Interview campaign has been observed merging some of the functionality of...

Threat Intelligence Executive Report – Volume 2025, Number 5

AndyC 18 October 2025

The Counter Threat Unit™ (CTU) research team analyzes security threats to help organizations protect their systems. Based on observations in...

threat

10 npm Packages Caught Stealing Developer Credentials on Windows, macOS, and Linux

Researchers Expose GhostCall and GhostHire: BlueNoroff’s New Malware Chains

Weekly Update 475

Smishing Triad Linked to 194,000 Malicious Domains in Global Phishing Operation

APT36 Targets Indian Government with Golang-Based DeskRAT Malware Campaign

North Korean Hackers Lure Defense Engineers With Fake Jobs to Steal Drone Secrets

Critical Lanscope Endpoint Manager Bug Exploited in Ongoing Cyberattacks, CISA Confirms

Smashing Security podcast #440: How to hack a prison, and the hidden threat of online checkouts

Dataminr to Acquire Cybersecurity Firm ThreatConnect in $290M Deal

Google Identifies Three New Russian Malware Families Created by COLDRIVER Hackers

Silver Fox Expands Winos 4.0 Attacks to Japan and Malaysia via HoldingHands RAT

North Korean Hackers Combine BeaverTail and OtterCookie into Advanced JS Malware

Threat Intelligence Executive Report – Volume 2025, Number 5

A brush with online fraud: What are brushing scams and how do I stay safe?

Revisiting CVE-2025-50165: A critical flaw in Windows Imaging Component

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET Threat Report H2 2025

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Donate Bitcoin to this address

Donate Ethereum to this address

Are current PAM solutions capable of handling NHIs

LangChain core vulnerability allows prompt injection and data exposure

Inside the Biggest Cyber Attacks of 2025

NPM package with 56,000 downloads compromises WhatsApp accounts

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed