Sazmining CEO Kent Halliburton was recently targeted in a sophisticated Bitcoin heist that cost his company over $200,000. Halliburton traveled to Amsterdam to meet with individuals named Even and ...
Microsoft is expanding its agent portfolio, adding to the existing 37 Security Copilot agents with over 40 new Microsoft and partner-built agents. Twelve new Microsoft-built agents across Microsoft...
NEW: CVE vendor-product description metric Referenceurl title GithubURL CVE-2025-13223 Google - Chrome ...
A modern cybersecurity stack requires a layered approach encompassing technologies, processes, and skilled personnel to effectively defend against contemporary threats like ransomware, phishing, an...
Israel National Digital Agency researchers have uncovered an ongoing, sophisticated espionage campaign, which we track as SpearSpecter, conducted by Iranian threat actors aligned with the Islamic R...
Cyber threats are global, but their characteristics are heavily influenced by regional factors like economics, regulations, and culture. A recent Anomali conference highlighted these regional nuanc...
Last year, Mandiant published a blog post highlighting suspected Iran-nexus espionage activity targeting the aerospace, aviation, and defense industries in the Middle East. In this follow-up post, ...
The security vendor silently patched a vulnerability, but did not assign the flaw a CVE or publicly disclose its existence until 17 days later. By then, widespread attacks were already underway. F...
Title: Dragon Breath Uses RONINGLOADER to Disable Security Tools and Deploy Gh0st RAT Source: The Hacker News Date Published: November 17, 2025 “Dragon Breath, a threat actor also known as APT-Q-2...
Anthropic, the company behind the AI assistant Claude, has documented a large-scale cyberattack campaign where AI was used beyond simple assistance. This marks what may be the first recorded instan...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Fortinet FortiWeb flaw, tracked as CVE-2025-64446 (CVSS score of 9.1), to its Known Exploited Vulnerabilities (KEV) catalog....
The botnet malware known as RondoDox has been observed targeting unpatched XWiki instances against a critical security flaw that could allow attackers to achieve arbitrary code execution. The vulne...
Source: Cyber Security News RONINGLOADER, a multi-stage loader spreading a modified version of the gh0st RAT, uses clever tricks to bypass antivirus protection. This campaign shows how attackers a...
Attackers are using fake invoice emails to spread XWorm, a remote-access trojan that quietly steals login credentials, passwords, and sensitive files from infected computers. The script immediately...
The U.S. Department of Justice (DoJ) on Friday announced that five individuals have pleaded guilty to assisting North Korea’s illicit revenue generation schemes by enabling information technology (...
Threat actors are abusing the decades-old “finger” command to execute malicious commands on Windows devices, reviving a previously known LOLBIN technique. The Finger protocol, once commonly used fo...
During the third quarter of 2025, we monitored more than 85 active data leak sites (DLS) that collectively listed 1,592 new victims. Compared to the 1,607 victims reported in Q2 2025, the publicati...
Siemens COMOS, a software used in critical manufacturing, is affected by two vulnerabilities that could allow attackers to execute arbitrary code or infiltrate data. Siemens has released updates to...
A sophisticated phishing campaign, potentially originating from Russian-speaking threat actors, has been identified targeting customers in the hospitality industry. Since the beginning of the year,...
At its core, the GFW’s domestic function is ideological containment: a technical means to preempt the circulation of narratives, symbols, or software deemed threatening to Party legitimacy. The fil...