Why Threat-Led Defense & Adversary Behavior Are Driving Security Priorities
Security teams used to set priorities based on vulnerabilities and assets. They would monitor CVE feeds, build patch schedules, and...
used
FBI alerts public to spoofed IC3 site used in fraud schemes
FBI alerts public to spoofed IC3 site used in fraud schemes Pierluigi Paganini September 22, 2025 The FBI warns that...
AI Principles: Securing the Use of AI in Payment Environments
Artificial intelligence (AI) systems are increasingly being used within businesses to help in the creation, management, and operation of payment...
Hackers breached Salesloft ’s GitHub in March, and used stole tokens in a mass attack
Hackers breached Salesloft ’s GitHub in March, and used stole tokens in a mass attack Pierluigi Paganini September 08, 2025...
SVG files used in hidden malware campaign impersonating Colombian authorities
SVG files used in hidden malware campaign impersonating Colombian authorities Pierluigi Paganini September 05, 2025 VirusTotal uncovered an undetected malware...
The Ongoing Fallout from a Breach at AI Chatbot Maker Salesloft
The recent mass-theft of authentication tokens from Salesloft, whose AI chatbot is used by a broad swath of corporate America...
The Ongoing Fallout from a Breach at AI Chatbot Maker Salesloft
The recent mass-theft of authentication tokens from Salesloft, whose AI chatbot is used by a broad swath of corporate America...
Horabot Malware Targets 6 Latin American Nations Using Invoice-Themed Phishing Emails
Cybersecurity researchers have discovered a new phishing campaign that's being used to distribute malware called Horabot targeting Windows users in...
Russia-linked ColdRiver used LostKeys malware in recent attacks
Russia-linked ColdRiver used LostKeys malware in recent attacks Pierluigi Paganini May 09, 2025 Since early 2025, Russia-linked ColdRiver has used...
Hackers hit deportation airline GlobalX, leak flight manifests, and leave an unsubtle message for “Donnie” Trump
GlobalX Airlines, a charter airline being used by the US government for deportation flights, has been attacked by hacktivists who...
From certificate chaos to scalable simplicity: Why partners are rethinking how they sell and manage SSL
Managing SSL certificates used to be tedious and manual, but not anymore. With Sectigo’s Certificate as a Service (CaaS), partners...
MintsLoader Drops GhostWeaver via Phishing, ClickFix — Uses DGA, TLS for Stealth Attacks
The malware loader known as MintsLoader has been used to deliver a PowerShell-based remote access trojan called GhostWeaver. "MintsLoader operates...
News alert: Case dismissed against VPN executive, affirms no-logs policy as a valid legal defense
Toronto, Canada, Apr. 28, 2025, CyberNewswire — Windscribe, a globally used privacy-first VPN service, announced today that its founder, Yegor...
Role of Russian Infrastructure in Cybercrime Operations Linked to North Korea
Research Trends have detected various IP address ranges in Russia employed for cyber criminality in collaboration with North Korea. These...
Swiping user login details using evilginx
Evilginx, a tool based on the authentic (and widely utilized) open-source nginx web server, can be utilized to grab usernames,...
