A staggering 92% of on-premises Microsoft Exchange servers in Germany are running outdated versions that will never receive another security patch, according to a warning issued by the German Feder...

Everest ransomware group leaks alleged AT&T Carrier data, demanding million for Dublin Airport files and million for Air Arabia employee records. An analysis by Hackread.com found that the lea...

Austria-based Noyb (None of Your Business) is targeting the US company and its executives, arguing that if successful, individuals who authorized the data collection could face criminal penalties, ...

Varonis Threat Labs has highlighted a decade-old vulnerability called BiDi Swap that enables URL spoofing. This technique exploits how browsers handle Right-to-Left (RTL) and Left-to-Right (LTR) sc...

Aisuru, the botnet responsible for a series of record-smashing distributed denial-of-service (DDoS) attacks this year, recently was overhauled to support a more low-key, lucrative, and sustainable ...

As Qilin marked its 700th ransomware attack of 2025, the group further cemented its position as the most prolific ransomware operator in recent years. Comparitech notes that only ten months into th...

A critical vulnerability has been discovered in OpenAI’s new ChatGPT Atlas browser, enabling attackers to inject malicious code into ChatGPT’s memory and potentially execute remote code on user sys...

UK-based Iranian activist Nariman Gharib claimed to have been sent a copy of the data that was stolen from Ravin Academy and has made it publicly available via a dedicated website. The stolen data ...

Hackers are exploiting a Windows Server vulnerability that can turn system updates into a malware delivery machine. Microsoft is urging users to download patches. Microsoft has released an emergen...

A growing wave of caller ID spoofing attacks, in which criminals falsify the number displayed on a phone to appear legitimate, has prompted Europol to call for urgent, coordinated action across Eur...

The exploitation of the first Chrome zero-day of 2025 is linked to tools used in attacks involving Hacking Team’s new spyware, Kaspersky reports.\n\nThe exploited Chrome vulnerability, tracked as C...

Everest ransomware group claims to have stolen 1.5 million passenger records from Dublin Airport and personal data of 18,000 Air Arabia employees in latest breaches. The Dublin Airport breach incl...

A high-severity vulnerability in BIND 9 resolvers has been disclosed, potentially allowing attackers to poison caches and redirect internet traffic to malicious sites. Tracked as CVE-2025-40778, th...

The notorious LockBit ransomware operation has resurfaced with a vengeance after months of dormancy following Operation Cronos takedown efforts in early 2024. Despite law enforcement disruptions an...

The vulnerability, tracked as CVE-2025-59287, involves deserialization of untrusted data and could allow intruders to execute code without authorization. Researchers at Huntress said they have seen...

If you’ve wondered how advanced adversaries (red teams or real threat actors) try to blend into a target system or deceive CTI/IR analysts, this post shows how COFF timestomping (overwriting a PE’s...

Threat actors predominately exploited public-facing applications for initial access this quarter, with this tactic appearing in over 60 percent of Cisco Talos Incident Response (Talos IR) engagemen...

Google’s Threat Analysis Group (TAG) has released an in-depth report titled “Buying Spying,” detailing the inner workings of the commercial surveillance vendor (CSV) industry and its significant th...

The Iranian APT group Nimbus Manticore is expanding its espionage activities into Western Europe, targeting defense, aerospace, and telecommunications organizations. Researchers have observed the g...

Trend Research has identified a sophisticated Agenda ransomware attack, also known as Qilin, deploying a Linux-based ransomware binary on Windows systems, bypassing traditional Windows-centric secu...