U.S. senators introduced legislation to strengthen federal cybersecurity by ensuring that federal contractors adhere to guidelines set forth... The post Bipartisan bill revives effort to require...

New research from Microsoft identifies Void Blizzard, also tracked as LAUNDRY BEAR, as a Russia-affiliated threat actor engaged... The post Microsoft details Void Blizzard as Russian cyber threat...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), working in coordination with the Australian Signals Directorate’s Australian Cyber... The post CISA, ASD, allies offer guidance...

2025-05-21 • Trendmicro • Junestherry Dela Cruz • win.stealc, win.vidar Open article on Malpedia

Disclosure: This article was provided by ANY.RUN. The information and analysis presented are based on their research and findings.

Microsoft has introduced Windows Backup for Organizations, a new backup tool for enterprises that simplifies backups and makes the transition to Windows 11 easier. [...]

A Vietnam-nexus hacking group distributes infostealers and backdoors via social media ads promoting fake AI generator websites

Meet the elite squad that’s hunting the next major cyberattack. With more than 150 years of combined research experience and expert analysis, the Tenable Research Special Operations team arms...

2025-05-27 • DCSO • Bennet Conrads, Denis Szadkowski, Johann Aydinbas, Moaath Oudeh • win.safepay Open article on Malpedia

Microsoft has introduced a new update orchestration platform built on the existing Windows Update infrastructure, which aims to unify the updating system for all apps, drivers, and system...

A newly-discovered Russian group, Void Blizzard, has successfully compromised organizations in critical industries, Microsoft warned

Apple, in its latest App Store fraud analysis, revealed that the company prevented more than $2 billion in potentially fraudulent transactions in 2024 alone. This contributes to a staggering total...

2025-05-27 • AIVD • AIVD Open article on Malpedia

2025-05-27 • Microsoft • Microsoft Threat Intelligence Open article on Malpedia

Apple says it blocked over $9 billion in fraudulent App Store transactions over the last five years, with over $2 billion in potentially fraudulent sanctions prevented in 2024 alone. [...]

The new offering can cut wiring time by up to 80%, speeding production and innovation.

Using an AI powered network traffic analysis tool we built called SIFT, GreyNoise has caught multiple anomalous network payloads with zero-effort that are attempting to disable TrendMicro security...

DragonForce gained access to an MSP’s SimpleHelp instance and weaponized its remote management capabilities to deliver a malicious installer to client environments. Once executed, the installer...

On May 8, 2025, GreyNoise observed a tightly coordinated and large-scale reconnaissance campaign launched from 251 malicious IP addresses, all hosted on Amazon AWS and geolocated in Japan. These...

Posted by Mateusz Jurczyk, Google Project Zero In the previous blog post, we focused on the general security analysis of the registry and how to effectively approach finding vulnerabilities in it....

Sina Gholinejad pleaded guilty to two counts in a scheme that most visibly hit the city of Baltimore, causing $19 million in damages. The post Iranian man pleads guilty in Robbinhood ransomware...

The Model Context Protocol (MCP) is a standard for how AI models can interact with external data sources and tools. This is important for cases where the model needs context-specific information...

Misconfigured Docker API instances have become the target of a new malware campaign that transforms them into a cryptocurrency mining botnet. The attacks, designed to mine for Dero currency, is...

The deal reflects a growing trend in cybersecurity toward consolidation and integration. The post ZScaler acquires Red Canary for boost in AI-driven security operations appeared first on CyberScoop.

ChatGPT o3 resists shutdown despite explicit instructions, raising fresh concerns over AI safety, alignment, and reinforcement learning behaviors.

Dutch intelligence officials and Microsoft warned today of a new Russian threat actor targeting Western organizations in what appears to be a military and high-tech espionage campaign. The new...

A Vietnam-based group has spread thousands of advertisements, fake websites and social media posts promising access to popular prompt-to-video AI generation tools, delivering infostealers and...

A Vietnam-based group has spread thousands of advertisements, fake websites and social media posts promising access to popular prompt-to-video AI generation tools, delivering infostealers and...

A Vietnam-based group has spread thousands of advertisements, fake websites and social media posts promising access to popular prompt-to-video AI generation tools, delivering infostealers and...

A Vietnam-based group has spread thousands of advertisements, fake websites and social media posts promising access to popular prompt-to-video AI generation tools, delivering infostealers and...