This white paper presents a concrete case study demonstrating the creation of a heap overflow vulnerability through the exploitation of the DICOM file format.
Customer data from more than 350 hotels around the world may have been accessed as part of realistic reservation-hijacking scams.
Also, missing school iPad resurfaced after coach’s kids uploaded video to YouTube
An overview of the activities of selected APT groups investigated and analyzed by ESET Research in Q4 2025 and Q1 2026
A Romanian national was sentenced this week to 56 months in federal prison for breaking into an Oregon state government computer network and fr cyberattacks targeting dozens of other U.S. victims. [...]
This diary walks through a recent Akira-attributed intrusion at a mid-sized organization. The reconstruction used only SSLVPN syslog and Windows EVTX exports. No EDR. No memory captures. Every...
Many organizations can detect network issues quickly, but investigations and coordination often slow incident resolution. This webinar explores how automation and AI-assisted workflows can help IT...
In April 2026, the American insurance holding company Kemper Corporation was named by the ShinyHunters ransomware group in a "pay or leak" extortion campaign. The attackers allegedly accessed...
The head of the British intelligence and cybersecurity agency warned that the U.K. is facing a ‘moment of... The post UK faces ‘moment of consequence,’ as GCHQ advances AI-driven cyber defence...
Our experts continue to track attacks targeting consumers of pirated content, both books and movies. 2026 saw the discovery of new target sites with tens of millions of visitors, while the miner...
Carnival Corporation, the world's largest cruise line operator, has confirmed a data breach affecting nearly 6 million people claimed by the ShinyHunters extortion gang in April 2026. [...]
Learn how attackers exploit automated bot traffic as part of software supply chain attacks to artificially inflate download counters and mask malicious payloads as legitimate.Key takeawaysVolume...
In Rheinland-Pfalz laden viele Fotografen ihre Bilder aus Schulen und Kitas ins Internet, damit Eltern sie dort ansehen und bestellen können. Jetzt wurde eine dieser Plattformen gehackt: der...
A Canadian man was sentenced to 33 years in prison after pleading guilty to targeting more than 145 children across the United States, some as young as 6 years old, in an eight-year-long...
Unit 42 explores trends in data theft and extortion, outlining key strategies for organizations as frontier AI models advance. The post Out of the Crypt: The Evolving Cyber Extortion Economy...
Latin America and Europe become the target of two banking trojan campaigns that are designed to infect Windows and Android devices with Grandoreiro and BTMOB malware, respectively. That's...
Cybersecurity researchers have discovered a new malicious package on the npm registry that comes with information stealing capabilities. According to OX Security, the package, named...
Silent Ransom Group isn’t prolific, but it's demonstrated a knack for attacking the legal services sector with an extraordinary dual use of social engineering and in-person visits to victims’...
Developer-targeted, supply-chain attacks all the rage these days
Google Chrome security advisory (AV26-517)
More than half of orgs in Okta survey faced an AI-related security incident or near miss last year
Estonia’s next test of digital government is not whether artificial intelligence can replace people. It is whether citizens, students and public servants can learn to use it well enough to stay...
Jenkins security advisory (AV26-515)
GitLab security advisory (AV26-516)
Cybercriminals still allowed to walk into office blocks and convince staff to let them plug in their own thumb drives
Veeam security advisory (AV26-513)
[Control Systems] Phoenix Contact Security Advisory (AV26-514)
Threat actors are targeting systems with high-performance computers in an ongoing cryptojacking campaign spread through a coordinated SEO poisoning operation that also manipulated AI chatbot...
GitHub security advisory (AV26-512)
CrowdStrike, in partnership with Google and the Shadowserver Foundation, has announced the simultaneous disruption of all command-and-control (C2) channels associated with GlassWorm, a persistent...