A seemingly simple phone call became the gateway to a sophisticated attack that diverted employee paychecks without any malware or network breach. An organization discovered this fraud when workers...
Google’s security outfit Mandiant last week released tools that can crack credentials in 12 hours, in the hope that doing so will accelerate the death of an ancient Microsoft security protocol. For...
Hacktivists hijacked Iran’s state TV to air anti-regime messages and an appeal to protest from Reza Pahlavi. Anti-regime activists briefly took control of Iran’s Badr satellite, hijacking state TV ...
A Tennessee man pleaded guilty on Friday to hacking the U.S. Supreme Court’s filing system more than two dozen times, court records show. In 2023, Moore used stolen credentials to hack into the Sup...
A remote code execution vulnerability, identified as CVE-2025-10327, has been discovered in RPi-Jukebox-RFID version 2.8.0. The exploit, authored by Beatriz Fresno Naumova, was dated 2025-09-25. T...
Hundreds of millions of wireless earbuds, headphones, and speakers are vulnerable to silent hijacking due to a flaw in Google’s Fast Pair system that allows attackers to seize control without the o...
Acronis Threat Research Unit (TRU) observed a targeted malware campaign against U.S. government entities leveraging a politically themed ZIP archive containing a loader executable and a malicious D...
A new phishing scam is leveraging PayPal’s legitimate invoice system to trick unsuspecting users, even appearing with the coveted “blue tick” verification mark in their inboxes. This sophisticated ...
The Gootloader malware, typically used for initial access, is now using a malformed ZIP archive designed to evade detection by concatenating up to 1,000 archives. In doing so, the malware, which is...
A critical misconfiguration in AWS CodeBuild has allowed attackers to seize control of core AWS GitHub repositories, including the JavaScript SDK that underpins the AWS Console. The issue, dubbed C...
Title: AVEVA Process Optimization Source: ICS-CERT Advisories Date Published: January 15, 2026 Successful exploitation of these vulnerabilities could enable an attacker to execute remote code, per...
A 33-year-old former IT consultant for Sweden’s Armed Forces has been detained on suspicions of spying for Russian intelligence, Swedish prosecutors said on Friday. The suspected criminal activity ...
The campaign, known as Contagious Interview, uses malicious repositories disguised as technical assessment projects to deploy a dual-layer malware system. When developers open the project folder t...
Landlock is a relatively new Linux Security Module (LSM), integrated into the kernel since version 5.13. Landlock allows the creation of sandboxes for your applications, on top of the existing syst...
This blog post was updated on January 14, 2026, to provide further analysis and context following an update to the Microsoft Digital Defense Report and the takedown of the cybercriminal service kno...
Manufacturing companies have quietly become one of the most hunted species in the modern threat landscape. Manufacturing is among the top industries targeted by ransomware groups and advanced campa...
The Computer Emergency Response Team of Ukraine (CERT-UA) reported new cyberattacks against Ukraine’s defense forces using PLUGGYAPE malware. Government experts attributed the attack with medium c...
Microsoft has fixed a vulnerability in its Copilot AI assistant that allowed hackers to pluck a host of sensitive user data with a single click on a URL. The hackers in this case were white-hat res...
On December 12, 2025, Apple patched two WebKit zero‑day vulnerabilities linked to mercenary spyware and is now effectively pushing iPhone 11 and newer users toward iOS 26+, because that’s where the...
VoidLink is an advanced malware framework made up of custom loaders, implants, rootkits, and modular plugins designed to maintain long-term access to Linux systems. The framework includes multiple ...