In its 2025 Global Threat Report, CrowdStrike observed a significant escalation in Chinese cyber espionage activities

A WIRED investigation reveals that criminals who make billions from scam compounds in Myanmar—where tens of thousands of people are enslaved—are using Starlink to get online.

Lotus Blossom espionage group targets multiple industries with different versions of Sagerunex and hacking tools

We analyze the backdoor Squidoor, used by a suspected Chinese threat actor to steal sensitive information. This multi-platform backdoor is built for stealth. The post Squidoor: Suspected Chinese...

OpenSSF has released new baseline security best practices to improve open source software quality

A suspected cyber criminal believed to have extorted companies under the name "DESORDEN Group" or "ALTDOS" has been arrested in Thailand for leaking the stolen data of over 90 organizations...

Claroty‘s research arm, Team82, has released new findings that uncover security risks in the Windows CE operating system,... The post Claroty’s Team82 reveals vulnerabilities in Windows CE,...

A software engineer for the Disney Company unwittingly downloaded a piece of malware that turned his life upside down. Was his password manager to blame?

With AI's pattern recognition capabilities well-established, Mr. Schölkopf's talk shifts the focus to a pressing question: what will be the next great leap for AI?

FBI confirms North Korea’s Lazarus Group responsible for Bybit crypto heist

​Microsoft has fixed a known issue that broke email and calendar drag-and-drop in classic Outlook after installing recent updates on Windows 24H2 systems. [...]

Ransomware prevention and anti-data exfiltration (ADX) firm BlackFog disclosed Wednesday that ransomware attacks reached record levels throughout 2024.... The post BlackFog reports global...

Trends in cybersecurity across 2024 showed less malware and phishing, though more social engineering. CrowdStrike offers tips on securing your business.

CrowdStrike observed significant growth in China’s offensive cyber capabilities last year as more groups used sector-specific skills to target critical industries and technologies. The post It’s...

CrowdStrike observed significant growth in China’s offensive cyber capabilities last year as more groups used sector-specific skills to target critical industries and technologies. The post It’s...

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Dario Health Equipment: USB-C Blood Glucose Monitoring System Starter Kit Android...

Cybersecurity has changed dramatically over the past 10,000 days. In this episode of Threat Vector, host David Moulton speaks with Haider Pasha, Chief Security Officer for EMEA & LATAM at Palo...

In this special live episode of Hacking Humans, recorded at ThreatLocker’s Zero Trust World 2025 conference in Orlando, Florida, Dave Bittner is joined by T-Minus host Maria Varmazis. Together,...

This week, we are joined by Adam Marré, Arctic Wolf CISO, who is talking about banning TikTok and increasing regulations for social media companies. Ben has an update on the fate of Apple’s...

The Termite ransomware group has allegedly leaked sensitive patient data following the Genea cyberattack, targeting one of Australia’s leading fertility providers. On February 26, 2025, the...

A U.S. Army soldier who pleaded guilty last week to leaking phone records for high-ranking U.S. government officials searched online for non-extradition countries and for an answer to the question...

FBI has confirmed that North Korean hackers stole $1.5 billion from cryptocurrency exchange Bybit on Friday in the largest crypto heist recorded until now. [...]

Gnosis wrote the Conditional Token Framework (CTF). It is a complex tree of tokens, each representing some subset of choices. When a bet is made, users deposit collateral for a "full" (all...

Wiz Threat Research identified a malicious campaign targeting weakly configured and publicly exposed PostgreSQL servers to deploy a XMRig-C3 cryptominer. In observed attacks, the threat actor...

A cross-site scripting (XSS) vulnerability in a virtual tour framework has been weaponized by malicious actors to inject malicious scripts across hundreds of websites with the goal of manipulating...

The proliferation of social media platforms in recent years has motivated cybercriminals to execute phishing attacks through social media websites. This evolution has created a new subtype of...

Look both ways for a new form of scam that’s on the rise, especially if you live in Dallas, Atlanta,... The post Fake Toll Road Scam Texts are Everywhere. These Cities are The Most Targeted....

A major employee screening provider discloses a data breach affecting over 3.3 million people. Signal considers exiting Sweden over a proposed law that would give police access to encrypted...

Verkada raises $200 million in Series E round.

The court said it has "shut down the affected systems while we focus on securing and restoring services safely."