Landlock is a relatively new Linux Security Module (LSM), integrated into the kernel since version 5.13. Landlock allows the creation of sandboxes for your applications, on top of the existing syst...

This blog post was updated on January 14, 2026, to provide further analysis and context following an update to the Microsoft Digital Defense Report and the takedown of the cybercriminal service kno...

Manufacturing companies have quietly become one of the most hunted species in the modern threat landscape. Manufacturing is among the top industries targeted by ransomware groups and advanced campa...

The Computer Emergency Response Team of Ukraine (CERT-UA) reported new cyberattacks against Ukraine’s defense forces using PLUGGYAPE malware. Government experts attributed the attack with medium c...

Microsoft has fixed a vulnerability in its Copilot AI assistant that allowed hackers to pluck a host of sensitive user data with a single click on a URL. The hackers in this case were white-hat res...

On December 12, 2025, Apple patched two WebKit zero‑day vulnerabilities linked to mercenary spyware and is now effectively pushing iPhone 11 and newer users toward iOS 26+, because that’s where the...

VoidLink is an advanced malware framework made up of custom loaders, implants, rootkits, and modular plugins designed to maintain long-term access to Linux systems. The framework includes multiple ...

In early January 2026, during routine vetting of a cryptocurrency project sourced via Upwork, Red Asgard’s threat research team discovered North Korean malware. The contractor—using a fake identity...

Since December 2015, a limited number of cyber operations have fundamentally altered how defenders assess risk to industrial control environments. Subsequent campaigns attributed to ELECTRUM and KA...

ANY.RUN’s team conducted an extensive malware analysis of CastleLoader, the first link in the chain of attacks impacting various industries, including government agencies and critical infrastructur...

Horizon3.ai identified a zero-day remote code execution vulnerability affecting Fortinet FortiSIEM and responsibly disclosed it to Fortinet in August 2025. The vulnerability allows unauthenticated ...

NEW: CVE vendor-product description metric Referenceurl title GithubURL   CVE-2025-12379 averta - Shortcodes an...

A 21-year-old Swedish man accused of being a key organizer of violence-as-a-service linked to the Foxtrot criminal network, which police say has recruited and exploited minors, has been arrested in...

As we ramp up to the premier automotive and charging station hacking competition, Pwn2Own Automotive 2026 in Tokyo, the Trend Micro Zero Day Initiative (ZDI) is providing a preliminary look at one ...

The Amsterdam Court of Appeal sentenced a 44-year-old Dutch national to seven years in prison for multiple crimes, including computer hacking and attempted extortion. The man was arrested in 2021 a...

New research from Trellix detailed that CrazyHunter ransomware has emerged as a serious and escalating threat, underscoring the growing sophistication of modern cybercriminal operations. Trellix ha...

Horizon3.ai discovered a severe vulnerability affecting Enhancesoft osTicket, a popular open source help desk and ticketing system. This vulnerability, tracked as CVE-2026-22200, allows anonymous a...

On January 9, Malwarebytes announced it had tracked a data breach involving the Meta-owned platform Instagram, claiming hackers had leaked data from 17.5 million accounts online. The leaked informa...

Instagram has denied any breach amid claims that data from over 17 million accounts was scraped and leaked online. According to Bleeping Computer, a spokesperson from Meta stated, “We fixed an issu...

International law enforcement agencies have recently dealt a major blow to one of the world’s most dangerous criminal networks, known as Black Axe. In a coordinated effort led by the Spanish Nation...