Exposure management company Tenable Holdings announced that it has signed a definitive agreement to acquire Vulcan Cyber, an... The post Tenable Holdings to acquire Vulcan Cyber for $147 million,...

This is a weekly threat intelligence report review from RST Cloud. This week, we analysed 51 threat intelligence articles and prepared a concise summary of the findings, including the relevant...

Researchers discovered a sophisticated attack initiated through social engineering on LinkedIn and WhatsApp, leading to credential theft via seemingly benign code downloads. With stolen session...

The Python Package Index (PyPI) has announced the introduction of 'Project Archival,' a new system that allows publishers to archive their projects, indicating to the users that no updates are to...

As the OT and ICS cybersecurity landscape continues to evolve, so does the role of women as they... The post Evolving role of women in OT/ICS cybersecurity, as S4x25 and BSides for ICS 2025...

In an exclusive interview for the Hall of Fame series, Industrial Cyber spoke with Sarah Freeman, chief engineer... The post Hall of Fame – Industrial Cybersecurity Engineer Sarah Freeman appeared...

U.S. senator says Musk's access to Treasury systems represents a "national security risk." © 2024 TechCrunch. All rights reserved. For personal use only.

The Importance of Balancing Cost and Security!

WhatsApp recently revealed a targeted spyware campaign linked to the Israeli firm Paragon, which affected 90 individuals, including…

U.S. and Dutch law enforcement agencies have announced that they have dismantled 39 domains and their associated servers as part of efforts to disrupt a network of online marketplaces originating...

Researchers uncover a double-entry website skimming attack targeting Casio and 16 other sites. Learn how cybercriminals exploited vulnerabilities to steal sensitive payment data and evade detection.

Multiple state-sponsored groups are experimenting with the AI-powered Gemini assistant from Google to increase productivity and to conduct research on potential infrastructure for attacks or for...

BeyondTrust has revealed it completed an investigation into a recent cybersecurity incident that targeted some of the company's Remote Support SaaS instances by making use of a compromised API...

Plus: WhatsApp discloses nearly 100 targets of spyware, hackers used the AT&T breach to hunt for details on US politicians, and more.

2025-01-27 • The DFIR Report • MittenSec, MyDFIR, r3nzsec • win.ghostsocks, win.lockbit, win.systembc Open article on Malpedia

2025-01-27 • SecurityScorecard • STRIKE Team Open article on Malpedia

2025-01-28 • Twitter (@anyrun_app) • ANY.RUN • elf.systembc Open article on Malpedia

2025-01-30 • Bitdefender • Martin Zugec • vbs.hatvibe Open article on Malpedia

Meta-owned WhatsApp on Friday said it disrupted a campaign that involved the use of spyware to target journalists and civil society members. The campaign, which targeted around 90 members,...

Cybersecurity researchers have discovered a malvertising campaign that's targeting Microsoft advertisers with bogus Google ads that aim to take them to phishing pages that are capable of...

AI-generated content is empowering even novice hackers to elevate phishing attacks, enabling highly personalized and convincing scams targeting…

Reps. Nancy Mace and Shontel Brown reintroduced VDP legislation after the 2024 bipartisan, bicameral bill didn’t get a full Senate vote. The post Bill requiring federal contractors to have...

Connecticut’s Community Health Center Inc. and California’s NorthBay Healthcare Corporation reported intrusions that exposed the data of hundreds of thousands of patients.

The company linked to the campaign recently signed a deal with U.S. Immigration and Customs Enforcement. The post WhatsApp says it disrupted spyware campaign aimed at reporters, civil society...

In one security firm's test, the chatbot alluded to using OpenAI's training data.

Global law enforcement seizes 12 domains including Sellix, Cracked and Nulled, €300,000 in cash and cryptocurrencies, and multiple…

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Food and Drug Administration (FDA) have issued alerts about the presence of hidden functionality in Contec CMS8000 patient...

The FBI and authorities in The Netherlands this week seized a number of servers and domains for a hugely popular spam and malware dissemination service operating out of Pakistan. The proprietors...

Security researchers tested 50 well-known jailbreaks against DeepSeek’s popular new AI chatbot. It didn’t stop a single one.

Massive Pakistani cybercrime network HeartSender has been shut down in a joint US-Dutch operation. Learn how their phishing…