🚨 Important Security Alert! An attachment in an email impersonating DHL about a shipment contains a link to a preconfigured SimpleHelp remote access tool—an ideal starting point for attackers to e...

NEW: CVE vendor-product description metric Referenceurl title GithubURL   CVE-2025-59308 n/a - n/a In Mah...

Intrado 911 Emergency Gateway Vulnerability 🚨 A newly disclosed path traversal vulnerability, tracked as CVE-2026-6074, impacts the Intrado 911 Emergency Gateway (EGW), which provides critical ser...

Executive Summary China-nexus cyber actors have transitioned from using individually procured infrastructure to operating large-scale covert networks - botnets built from compromised routers and o...

FIRESTARTER Backdoor Malware Analysis 🚨 The Cybersecurity and Infrastructure Security Agency (CISA) has conducted an analysis of a sample of FIRESTARTER malware obtained from a forensic investigat...

FIRESTARTER Backdoor Analysis 🚨 The Cybersecurity and Infrastructure Security Agency (CISA) has conducted an in-depth analysis of the FIRESTARTER malware, which was obtained during a forensic inve...

FIRESTARTER Backdoor Analysis by CISA The Cybersecurity and Infrastructure Security Agency (CISA) has conducted an analysis of the FIRESTARTER malware, which was obtained from a forensic investiga...

Bad Memories Still Haunt AI Agents AI memory files and context data help personalize requests and provide additional information that large-language and other foundational AI models can use to del...

Bad Connection: Uncovering Global Telecom Exploitation by Covert Surveillance Actors In recent years, several investigations have exposed vulnerabilities in the mobile telecommunications ecosystem...

Bad Connection: Uncovering Global Telecom Exploitation by Covert Surveillance Actors In recent years, several investigations have exposed vulnerabilities in the mobile telecommunications ecosystem...

Tropic Trooper: AdaptixC2 and Custom Beacon Uncovered 🚀 On March 12, 2026, Zscaler ThreatLabz discovered a malicious ZIP archive containing military-themed document lures targeting Chinese-speakin...

The Shadowy SIM Farms Behind Those Incessant Scam Texts 🚨 “SIM farm as-a-service” setups are used for financial fraud, spam, phishing, and online product scalping. These hidden phone factories ope...

Surge in Silent Subject Phishing Attacks Targets VIP Users 🚨 A surge in phishing emails lacking subject lines has been identified as part of a widespread campaign targeting high-value users. Accor...

Harvester Deploys Linux GoGra Backdoor in South Asia Using Microsoft Graph API The threat actor known as Harvester has been attributed to a new Linux version of its GoGra backdoor deployed as part...

Unmasking DPRK Cyber Threat Actors: Fake IT Worker Infrastructure & Post-Exposure Analysis This investigation was initiated after reporting by cryptocurrency security researcher ZachXBT, who i...

NCSC Unveils SilentGlass 🚀 The UK National Cyber Security Centre (NCSC) has unveiled a groundbreaking technology designed to protect video connections from cyber-attacks. The device, dubbed Silent...

Stopping Fraud at Each Stage of the Customer Journey Without Adding Friction Fraud prevention and user experience have long been treated as opposing forces: tighten security, and you risk alienati...

🚨 Fake Google Antigravity Downloads Are Stealing Accounts in Minutes Somebody went looking for Google’s new Antigravity coding tool this week, clicked download, ran the installer, and got exactly ...

Android 17 Introduces Granular Contact Access 🚀 Android 17 (currently in preview) is introducing a new Contact Picker that allows users to grant apps access to specific contacts rather than the en...

Android 17 Enhances Privacy with New Contact Picker 🚀 Android 17 (currently in preview) is introducing a new Contact Picker that allows users to grant apps access to specific contacts instead of t...