The virtual treasure chests and other casino-like rewards inside your children’s games may pose risks you shouldn’t play down

2025-02-11 • CyberSecurityNews • Do Son • win.dcrat Open article on Malpedia

2025-02-12 • The Hacker News • Ravie Lakshmanan Open article on Malpedia

2025-02-12 • Bleeping Computer • Bill Toulas Open article on Malpedia

Threat intelligence firm Recorded Future said it had observed Salt Typhoon breaching 5 telcos between December 2024 and January 2025. © 2024 TechCrunch. All rights reserved. For personal use only.

A China-based threat actor, tracked as Emperor Dragonfly and commonly associated with cybercriminal endeavors, has been observed using in a ransomware attack a toolset previously attributed to...

2025-02-11 • Twitter (@MsftSecIntel) • Microsoft Threat Intelligence Open article on Malpedia

The open-source LLM known as DeepSeek has attracted much attention in recent weeks with the release of DeepSeek V3 and DeepSeek R1, and in this blog, The Tenable Security Response Team answers...

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 7.2 ATTENTION: Low attack complexity Vendor: Qardio Equipment: Heart Health IOS application, Heart Health Android Application, QardioARM A100...

Despite high-profile attention and even US sanctions, the group hasn’t stopped or even slowed its operation, including the breach of two more US telecoms.

Discover the latest threat intelligence outlooks for 2025, including AI-enabled phishing, SaaS attacks, and executive-targeted cyber threats. Learn key strategies to protect your organization from...

Explore intelligence reports from Recorded Future's Insikt Group at the 2025 Munich Security Conference. Key topics include Taiwan invasion risk, Russian influence in German elections, RedMike...

Discover how Russia-linked influence operations, including Doppelgänger and Operation Overload, are attempting to undermine Germany's 2025 elections. Learn about their tactics, impacts, and how to...

Discover how Chinese state-sponsored group RedMike exploited unpatched Cisco devices, targeting telecommunications providers globally. Learn about vulnerabilities CVE-2023-20198 and...

Learn how North Korea’s IT workers infiltrate global companies, posing cybersecurity threats, committing fraud, and supporting the regime. Discover key findings and mitigation strategies to...

The BadPilot campaign operates as a horizontally scalable cyber operation, compromising a wide range of internet-facing systems using publicly available exploits. The subgroup conducts broad...

Massive 1.17 TB data leak exposes billions of records from a Chinese IoT grow light company. Wi-Fi passwords,…

A subgroup within the infamous Russian state-sponsored hacking group known as Sandworm has been attributed to a multi-year initial access operation dubbed BadPilot that stretched across the globe....

“The vast cybercriminal ecosystem has acted as an accelerant for state-sponsored hacking, providing malware, vulnerabilities, and in some cases full-spectrum operations to states,” said Ben Read...

The attack has impacted casinos, health services, tribal administration and credit card payments at stores in the area.

February’s report on Microsoft patches includes 56 vulnerabilities, two of which are zero-day flaws that have been exploited.

Check out this FAQ-style blog on questions we received about Malware Detection for Barracuda Cloud-to-Cloud Backup at our recent webinar.

Sponsored by accessiBe

Cybersecurity researchers have discovered a bypass for a now-patched security vulnerability in the NVIDIA Container Toolkit that could be exploited to break out of a container's isolation...

He now faces four years in federal prison.

Alexander Vinnik, who ran the defunct cryptocurrency exchange BTC-e and pleaded guilty last year to participating in a money laundering scheme, is heading back to Russia as part of a prisoner swap...

At the S4x25 event, Dale Peterson sat down with Paul Griswold, former chief product officer at Honeywell, for... The post S4x25 fireside chat: Dale Peterson and Paul Griswold discuss evolution of...

The Food and Ag-ISAC released its latest publication, the Food and Ag Sector Cyber Threat Report, that employs... The post Food and Ag-ISAC cyber threat report provides actionable intelligence on...

At S4x25, Dale Peterson delivered a keynote that wasn’t just a presentation—it was a call to action. Known... The post S4x25 Keynote: Dale Peterson challenges OT security professionals to rethink...

Drata, a security compliance automation platform that helps companies adhere to frameworks such as SOC 2 and GDPR, has acquired software security review startup SafeBase for $250 million. SafeBase...