In October 2023, CISA added a knownRansomwareCampaignUse field to KEV, designed to help organizations prioritize more effectively. Relying on KEV for prioritization is already a trailing...
Most webhook scanning campaigns run from throwaway VPS instances. This one came from a full Kubernetes cluster with Envoy service mesh. Censys data showed consistent infrastructure across all...
The crew targets telecoms, critical infrastructure - all the usual high-value orgs Security researchers have attributed the Notepad++ update hijacking to a Chinese government-linked espionage crew...
A security audit of 2,857 skills on ClawHub has found 341 malicious skills across multiple campaigns, according to new findings from Koi Security, exposing users to new supply chain risks. ClawHub...
A high-severity security flaw has been disclosed in OpenClaw (formerly referred to as Clawdbot and Moltbot) that could allow remote code execution (RCE) through a crafted malicious link. The...
Microsoft has announced a three-phase approach to phase out New Technology LAN Manager (NTLM) as part of its efforts to shift Windows environments toward stronger, Kerberos-based options. The...
The Chinese APT group Lotus Blossom intruded the tool’s internal systems to snoop on a limited set of users’ activities, according to researchers. The post China-based espionage group compromised...
The ICE-tracking service says it doesn't store usernames or addresses ICE-reporting service StopICE has blamed a US Customs and Border Protection (CBP) agent for attacking its app and website and...
Ukraine’s CERT says the bug went from disclosure to active exploitation in days Russia-linked attackers are already exploiting Microsoft's latest Office zero-day, with Ukraine's national cyber...
Every week brings new discoveries, attacks, and defenses that shape the state of cybersecurity. Some threats are stopped quickly, while others go unseen until they cause real damage. Sometimes a...
For mid-market organizations, cybersecurity is a constant balancing act. Proactive, preventative security measures are essential to protect an expanding attack surface. Combined with effective...
Your favorite menu item might be easy to remember but it will not secure your account Change Your Password Day took place over the weekend, and in case you doubt the need to improve this most...
Why federal agencies are rethinking hybrid cloud strategy
Kurt Knutsson recently reported on a ransomware attack in September that affected 377,082 individuals. Gulshan Management Services, Inc. is linked to Gulshan Enterprises, which operates around 150...
Enhancing the Wiz Integration Network with a new WIN MCP, developer AI agent, WIN AI security category, and partner AI hackathon
Citizen Lab senior researcher Bill Marczak served as a key witness in a UK ruling that ordered Saudi Arabia to pay £3m to a London dissident who was targeted with Pegasus spyware. In 2018, Citizen...
1 exposed database. 35,000 emails. 1.5M API keys. And 17,000 humans behind the not-so-autonomous AI network.
The Senate has passed the $838.7 billion fiscal 2026 defense spending bill, after Democrats and the White House reached a deal to largely avert a government shutdown. Senators voted 71-29 to...
SpaceX has unveiled an online tool, called Stargaze, for tracking space objects and warning of potential on-orbit collisions — with a promise to provide the system’s space situational awareness...
TikTok has entered a new era in the United States, but it’s hardly a less risky one. Last week, the company disclosed the contours of a deal intended to allow the platform to continue operating in...
Japan and Britain agreed Saturday to accelerate cooperation on cybersecurity and the supply of critical minerals, as China’s influence grows in the region. British Prime Minister Keir Starmer said...
The maintainer of Notepad++ has revealed that state-sponsored attackers hijacked the utility's update mechanism to redirect update traffic to malicious servers instead. "The attack involved [an]...
At the end of last week, the Trump administration quietly released its 2026 National Defense Strategy (NDS). The document warrants a close read. Its thesis is three-pronged: the United States must...
News that critical infrastructure networks in both Guam and the United States had been compromised first emerged in 2023. Dubbed ‘Volt Typhoon’, the threat actor responsible for this sophisticated...
Researchers disclose rapid exploit chain that let attackers run code via a single malicious web page Security issues continue to pervade the OpenClaw ecosystem, formerly known as ClawdBot then...
With the second Trump administration has come a dramatic shift in U.S. foreign economic policy. Washington is imposing tariffs on partners and rivals alike, slashing foreign aid, aggressively...
In a security update posted on the project’s website, the development team said the attack did not exploit a flaw in the editor’s source code itself. Instead, the compromise occurred at the...
The Islamic Republic has reacted to domestic unrest with a new cyber campaign against dissidents in the Iranian diaspora, a cyber expert targeted by Iran told The Jerusalem Post on Friday. Beyond...
For the latest discoveries in cyber research for the week of 2nd February, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES MicroWorld Technologies, maker of eScan...
The internet domain registration system is a major weakness that malicious hackers can exploit, but is often being overlooked, a senior Secret Service official said Thursday. “It is staggering to...