A new zero-day security flaw has been discovered in Apache OfBiz, an open-source Enterprise...
Over the past few years, SaaS has developed into the backbone of corporate IT....
The U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) announced sanctions against six...
The cyber attacks targeting the energy sector in Denmark last year may not have...
A security vulnerability has been disclosed in the LiteSpeed Cache plugin for WordPress that...
Cybersecurity researchers have found a number of GitHub repositories offering cracked software that are used to deliver an information stealer called RisePro....
Chinese users looking for legitimate software such as Notepad++ and VNote on search engines like Baidu are being targeted with malicious ads...
Details have been made public about a now-patched high-severity flaw in Kubernetes that could allow a malicious attacker to achieve remote code...
The threat actor known as Blind Eagle has been observed using a loader malware called Ande Loader to deliver remote access trojans...
A DarkGate malware campaign observed in mid-January 2024 leveraged a recently patched security flaw in Microsoft Windows as a zero-day using bogus...
Fortinet has warned of a critical security flaw impacting its FortiClientEMS software that could allow attackers to achieve code execution on affected...
The threat actors behind the PixPirate Android banking trojan are leveraging a new trick to evade detection on compromised devices and harvest...
A new phishing campaign has been observed delivering remote access trojans (RAT) such as VCURMS and STRRAT by means of a malicious...
A new malware campaign is leveraging a high-severity security flaw in the Popup Builder plugin for WordPress to inject malicious JavaScript code....
The threat actors behind the BianLian ransomware have been observed exploiting security flaws in JetBrains TeamCity software to conduct their extortion-only attacks....
Technical specifics and a proof-of-concept (PoC) exploit have been made available for a recently disclosed critical security flaw in Progress Software OpenEdge...
A financially motivated threat actor called Magnet Goblin is swiftly adopting one-day security vulnerabilities into its arsenal in order to opportunistically breach...
Microsoft on Friday revealed that the Kremlin-backed threat actor known as Midnight Blizzard (aka APT29 or Cozy Bear) managed to gain access...
In a significant development that could reshape the cybersecurity landscape of industrial control systems (ICS), a team of researchers from the Georgia...
Cisco has released patches to address a high-severity security flaw impacting its Secure Client software that could be exploited by a threat...
Threat actors have been observed leveraging the QEMU open-source hardware emulator as tunneling software during a cyber attack targeting an unnamed “large...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a critical security flaw impacting JetBrains TeamCity On-Premises software to its...
Threat actors are conducting brute-force attacks against WordPress sites by leveraging malicious JavaScript injections, new findings from Sucuri reveal. The attacks, which...
The China-linked threat actor known as Evasive Panda orchestrated both watering hole and supply chain attacks targeting Tibetan users at least since...
The U.S. Department of Justice (DoJ) announced the indictment of a 38-year-old Chinese national and a California resident for allegedly stealing proprietary...
Hackers Using Cracked Software on GitHub to Spread RisePro Info Stealer
Malicious Ads Targeting Chinese Users with Fake Notepad++ and VNote Installers
Researchers Detail Kubernetes Vulnerability That Enables Windows Node Takeover
Ande Loader Malware Targets Manufacturing Sector in North America
DarkGate Malware Exploited Recently Patched Microsoft Flaw in Zero-Day Attack
Fortinet Warns of Severe SQLi Vulnerability in FortiClientEMS Software
PixPirate Android Banking Trojan Using New Evasion Tactic to Target Brazilian Users
Alert: Cybercriminals Deploying VCURMS and STRRAT Trojans via AWS and GitHub
Malware Campaign Exploits Popup Builder WordPress Plugin to Infect 3,900+ Sites
BianLian Threat Actors Exploiting JetBrains TeamCity Flaws in Ransomware Attacks
Proof-of-Concept Exploit Released for Progress Software OpenEdge Vulnerability
Magnet Goblin Hacker Group Leveraging 1-Day Exploits to Deploy Nerbian RAT
Microsoft Confirms Russian Hackers Stole Source Code, Some Customer Secrets
Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems
Cisco Issues Patch for High-Severity VPN Hijacking Bug in Secure Client
QEMU Emulator Exploited as Tunneling Tool to Breach Company Network
CISA Warns of Actively Exploited JetBrains TeamCity Vulnerability
Hacked WordPress Sites Abusing Visitors’ Browsers for Distributed Brute-Force Attacks
Chinese State Hackers Target Tibetans with Supply Chain, Watering Hole Attacks
Ex-Google Engineer Arrested for Stealing AI Technology Secrets for China