The long-running botnet operation used malware that infected older wireless internet routers over a 20-year period, according to federal prosecutors. The post US seizes Anyproxy, 5socks botnets...

Decrypting the security implications of ECH

The ASUS DriverHub driver management utility was vulnerable to a critical remote code execution flaw that allowed malicious sites to execute commands on devices with the software installed. [...]

Microsoft has removed an upgrade block that prevented some Safe Exam Browser users from installing the Windows 11 2024 Update due to incompatibility issues. [...]

Check Point’s April 2025 malware report reveals increasingly sophisticated and hidden attacks using familiar malware like FakeUpdates, Remcos,…

Got hit by the 23andMe breach? If your data was stolen, you can join the class-action suit. Here's how.

Detecting leaked credentials is only half the battle. The real challenge—and often the neglected half of the equation—is what happens after detection. New research from GitGuardian's State of...

Smarter TV operating systems bring added convenience, but they also raise new privacy concerns, especially with automatic content recognition (ACR). Here's what it is, and what you can do about it.

S Ventures invests in Theom.ai, a company redefining data security and governance with their AI-native Data Operations Center (DOC) platform.

Hacktivist claims on Indian infrastructure raised alarms, but investigations showed minimal damage

The criminal proxy network infected thousands of IoT and end-of-life devices, creating dangerous botnet

Overview AhnLab is monitoring Advanced Persistent Threat (APT) attacks in South Korea using its own infrastructure. This report covers the classification, statistics, and functions of APT attacks...

This report provides statistics on the number of new ransomware samples collected, the number of affected systems, and affected companies in April 2025, as well as key ransomware issues in and out...

Heard of polymorphic browser extensions yet? These savage imposters threaten the very future of credential management. Here's what you need to know - and do.

The National Cyber Security Centre (NCSC), part of GCHQ, unveiled two key initiatives aimed at strengthening the UK’s... The post GCHQ’s NCSC launches cyber resilience facilities, threat...

Ransomware remains a critical and escalating threat to organizations globally, significantly impacting operational technology (OT) environments and critical infrastructure. The... The post Dragos...

During Infosecurity Europe 2025 experts will explore how to strengthen organizational resilience against persistent third-party risks

We’re thrilled to announce that six remarkable leaders from Barracuda have been recognized in the 2025 CRN® Women of the Channel list.

A new campaign employing ClickFix attacks has been spotted targeting both Windows and Linux systems using instructions that make infections on either operating system possible. [...]

2025-04-29 • Nextron Systems • Maurice Fielenbach • win.cobalt_strike, win.nitrogen Open article on Malpedia

2025-05-07 • NTT Security • Masaya Motoda, Rintaro Koike • js.beavertail, js.otter_cookie, py.invisibleferret Open article on Malpedia

The landmark Singapore Consensus comes at a time when the giants of generative AI - such as OpenAI - are disclosing less and less to the public.

You can ditch your Microsoft account password completely now. But if you plan to do so, there's a step you absolutely must not skip.

2025-05-09 • Sophos X-Ops • Ben Goldberg, Haigh Minassian, Imane Ismail, ndrew Petrus, Sushmita Shetty • win.lumma Open article on Malpedia

A Türkiye-backed cyberespionage group exploited a zero-day vulnerability to attack Output Messenger users linked to the Kurdish military in Iraq. [...]

This Anti-Ransomware Day, we look at a decade of RaaS activity and how ransomware has evolved into a billion-dollar criminal enterprise.

She@Cyber training program is focused on improving the representation of women and other underrepresented groups in the cybersecurity industry

Threat actors have been observed leveraging fake artificial intelligence (AI)-powered tools as a lure to entice users into downloading an information stealer malware dubbed Noodlophile. "Instead...

With the digital transformation movement sweeping the world and cyber threats evolving simultaneously to pose greater and greater…

A global cryptocurrency phishing operation likely based in India or Sri Lanka has been stealing digital assets since at least 2022