The cybercriminals have been spreading malware through malicious wedding invitations sent through private and group chats on Telegram and WhatsApp.

As part of our ongoing mission to identify emerging threats to mobile security, our zLabs team shares how we can help protect you against Tria Stealer. The post Zimperium’s Protection Against Tria...

As part of our ongoing mission to identify emerging threats to mobile security, our zLabs team shares how we can help protect you against Tria Stealer. The post Zimperium’s Protection Against Tria...

Social engineering has long been an effective tactic because of how it focuses on human vulnerabilities. There’s no brute-force ‘spray and pray’ password guessing. No scouring systems for...

The Indian multinational temporarily suspended some of its IT services after discovering the ransomware attack.

Italy's data protection watchdog has blocked Chinese artificial intelligence (AI) firm DeepSeek's service within the country, citing a lack of information on its use of users' personal data. The...

Documents reveal that USAID was victimized by a password spray attack that resulted in roughly $500,000 in Microsoft service charges. The post Even the US government can fall victim to...

Google said it blocked over 2.36 million policy-violating Android apps from being published to the Google Play app marketplace in 2024 and banned more than 158,000 bad developer accounts that...

Discover how cybercriminals use 'Infrastructure Laundering' to exploit AWS and Azure for scams, phishing, and money laundering. Learn about FUNNULL CDN's tactics and their global impact on...

Hackers are increasingly abusing bugs in popular enterprise software to target big companies in mass-hacking campaigns © 2024 TechCrunch. All rights reserved. For personal use only.

Law enforcement seized dozens of domains linked to a group known as Saim Raza, or HeartSender, which has been selling hacking tools since at least 2020.

India's Tata Technologies has disclosed a ransomware attack affecting its IT assets. © 2024 TechCrunch. All rights reserved. For personal use only.

The Meta-owned company said the campaign was linked to Israeli spyware maker Paragon. © 2024 TechCrunch. All rights reserved. For personal use only.

Cisco Talos found that exploitation of public-facing applications made up 40% of incidents it observed in Q4 2024, marking a notable shift in initial access techniques

This glossary includes the most common terms and expressions TechCrunch uses in our security reporting, and explanations of how — and why — we use them. © 2024 TechCrunch. All rights reserved. For...

“A computer can never be held accountable, therefore a computer must never make a management decision.” – IBM Training Manual, 1979 Artificial intelligence (AI) adoption is on the rise. According...

As is their wont, cybercriminals waste no time launching attacks that aim to cash in on the frenzy around the latest big thing – plus, what else to know before using DeepSeek

Lumma Stealer, nefarious info-stealing malware, resurfaces in the cyber threat arena. Defenders recently uncovered an advanced adversary campaign distributing Lumma Stealer through GitHub...

The Indian tech giant temporarily suspended some of its IT services, which have now been restored

​Microsoft says it improved the contrast of text rendered in all Chromium-based web browsers on Windows, making it more readable on some displays. [...]

Apple's trackers have been misused to track some without their consent. Here's how to check if an AirTag is tracking you, whether you use an iPhone or Android phone. Plus, what to do next if you find one.

Broadcom has released security updates to patch five security flaws impacting VMware Aria Operations and Aria Operations for Logs, warning customers that attackers could exploit them to gain...

2025-01-29 • Socket • Kirill Boychenko, Peter van der Zee • js.beavertail, py.invisibleferret Open article on Malpedia

2025-01-30 • RevEng.AI • RevEng.AI • win.lumma Open article on Malpedia

2025-01-30 • Department of Justice • U.S. Attorney's Office Southern District of Texas Open article on Malpedia

2025-01-30 • CISA • CISA Open article on Malpedia

2025-01-30 • Bleeping Computer • Lawrence Abrams Open article on Malpedia

Community Health Center (CHC), a Connecticut-based nonprofit healthcare provider, has confirmed that hackers accessed the sensitive data of more than a million patients. In a filing with Maine’s...

Tata Technologies Ltd. had to suspend some of its IT services following a ransomware attack that impacted the company network. [...]

2025-01-23 • Netskope • Leandro Froes • win.lumma Open article on Malpedia