A large-scale phishing campaign targeted over 5,000 businesses that actively advertise on Facebook. The attack involved tens of thousands of emails designed to steal credentials and data, impacting...
Mandiant Threat Defense has uncovered exploitation of an unauthenticated access vulnerability within Gladinet’s Triofox file-sharing and remote access platform. This now-patched n-day vulnerability...
Nine NuGet packages have been discovered containing time-delayed payloads designed to disrupt databases and industrial control systems. The packages, published by an actor named “shanhai666,” were ...
Chinese infosec blog MXRN last week reported a data breach at a security company called Knownsec that has ties to Beijing and China’s military. MXRN says the company leaked over 12,000 classified d...
Three newly disclosed vulnerabilities in the runC container runtime used in Docker and Kubernetes could be exploited to bypass isolation restrictions and get access to the host system. An attacker...
Microsoft has revealed a novel side-channel attack, dubbed Whisper Leak, that can identify AI chat topics within encrypted network traffic. This attack exploits the data exchanged between users and...
NEW: CVE vendor-product description metric Referenceurl title GithubURL CVE-2025-11212 Google - Chrome ...
Unit 42 researchers have uncovered a previously unknown Android spyware family, which we have named LANDFALL. To deliver the spyware, attackers exploited a zero-day vulnerability (CVE-2025-21042) i...
Summary Analysis of underground advertisements reveals striking commonalities across malicious AI platforms. Most notably, nearly every notable tool advertised emphasized its ability to support ph...
The attacker’s modus operandi involved using a compromised email account to send malicious messages to multiple hotel establishments. This campaign leverages spear-phishing emails that impersonate ...
Gootloader malware has resurfaced after a period of dormancy, now delivering ransomware in partnership with the Vanilla Tempest group (aka Rhysida). Huntress Labs has identified three recent Gootlo...
Google’s Threat Intelligence Group (GTIG) warned of a new generation of malware that uses AI during execution to mutate, adapt, and collect data in real time, helping it evade detection more effect...
“…on November 6, 2025 - sixteen days later - we detected a new wave of GlassWorm infections. Three more extensions compromised. A fresh Solana blockchain transaction providing new C2 endpoints. Sam...
New data from Comparitech shows ransomware attacks jumped 25% in October, climbing from 546 in September to 684. This marks a significant increase in attacks and the third-highest monthly total thi...
NEW: CVE vendor-product description metric Referenceurl title GithubURL CVE-2016-15054 Nagios - XI Nagi...
Russian hackers are exploiting Microsoft’s Hyper-V virtualization feature to create a hidden Linux virtual machine within a target’s host, allowing them to covertly install secret implants on the v...
The attack exploited a mathematical vulnerability in how Balancer’s ComposableStablePools handle small-value swaps. When token balances are pushed to specific rounding boundaries (8-9 wei range), S...
Seven critical vulnerabilities in OpenAI’s ChatGPT, affecting both GPT-4o and the newly released GPT-5 models, that could allow attackers to steal private user data through stealthy, zero-click exp...
Google’s Threat Intelligence Group (GTIG) has identified a major shift this year, with adversaries leveraging artificial intelligence to deploy new malware families that integrate large language mo...