Credentials Account For Over Half of Cloud Compromises
Over half (55%) of public cloud compromises investigated by Google in the first three months of the year were down...
Premium Members Content
CISA Announces 2024-2026 Strategic Plan
The Cybersecurity and Infrastructure Security Agency (CISA) has released its FY2024-2026 Strategic Plan, which builds on the cybersecurity strategy published...
VMConnect: Python PyPI Threat Imitates Popular Modules
A new malicious campaign has been found on the Python Package Index (PyPI) open-source repository involving 24 malicious packages that...
Stealthy npm Malware Exposes Developer Data
A stealthy malware has been discovered on npm, the popular package manager for JavaScript, that poses a severe threat by...
Sophisticated Phishing Exploits Zero-Day Salesforce Vulnerability
A sophisticated email phishing campaign has been discovered by security researchers, exploiting a zero-day vulnerability in Salesforce’s email services and...
Manufacturing Sector Reeling From Financial Costs of Ransomware
The enormous global costs of ransomware attacks on the manufacturing sector have been laid bare in a new analysis by...
Ivanti Discloses Yet Another Critical Flaw
Security vendor Ivanti has disclosed yet another critical vulnerability in its products, linked to a previous zero-day that was exploited...
Hundreds of Citrix Endpoints Compromised With Webshells
Around 600 global Citrix servers have been compromised by a zero-day exploit enabling webshells to be installed, according to a non-profit...
Humans Unable to Reliably Detect Deepfake Speech
Humans cannot detect deepfake speech 27% the time, researchers from University College London (UCL) have found during a recent study.The...
Menlo Leverages Advanced Technology to Combat Surging Browser Threats
With the deployment of software-as-a-service tools, like Workday and Salesforce to name a few, workers are now spending more time...
Cocaine Smugglers that Posed as PC Sellers Jailed
Several members of an organized crime group (OGC) have been sentenced after police secretly monitored tens of thousands of messages...
Microsoft Teams Targeted in Midnight Blizzard Phishing Attacks
Microsoft Threat Intelligence has recently detected a series of highly targeted social engineering attacks employing credential theft phishing lures delivered...
Hacktivist Collective “Mysterious Team Bangladesh” Revealed
Threat intelligence experts from Group-IB have shed light on the hacktivist collective known as Mysterious Team Bangladesh.In a report published...
Cisco Talos Discusses Flaws in SOHO Routers Post-VPNFilter
Cisco Talos has published a list of numerous vulnerabilities in small and home office (SOHO) and industrial wireless routers.In their...
Cyber-Attacks Targeting Government Agencies Increase 40%
Cyber-attacks against government agencies and public sector services are up 40% in the second quarter of 2023 compared to the...
CISA in New Warning Over Ivanti Vulnerabilities
US and Norwegian security agencies have released a new security advisory warning that APT actors may be combining exploits for...
Russian Cybersecurity Exec Wanted By Russia and US
An employee at a Russian cybersecurity vendor has found himself at the center of a geopolitical tussle between the US...
OT/IoT Malware Surges Tenfold in First Half of the Year
Malware-related cyber-threats in operational technology (OT) and Internet of Things (IoT) environments jumped tenfold in the first six months of...
AI-Enhanced Phishing Driving Ransomware Surge
Government agencies alongside education and healthcare organizations have become prime targets for ransomware operators over the past three years.According to...
AI-Powered CryptoRom Scam Targets Mobile Users
CryptoRom, a notorious scam that combines fake cryptocurrency trading and romance scams, has taken a new twist by utilizing generative...
Cloud Firm Under Scrutiny For Suspected Support of APT Operations
The cloud firm Cloudzy has come under scrutiny for its alleged support of advanced persistent threat (APT) operations.In a new...
Threat Actors Use AWS SSM Agent as a Remote Access Trojan
Threat actors have been observed using Amazon Web Services (AWS) 's System Manager (SSM) agent as a Remote Access Trojan...
NHS Staff Reprimanded For WhatsApp Data Sharing
An NHS trust has been reprimanded by the UK’s data protection regulator after it was discovered that staff had been...
Capita Boss to Step Down
The boss of one of Europe’s largest outsourcing companies has announced his retirement, several months after the firm suffered a...
