A previously undocumented threat actor of unknown origin has been linked to attacks targeting telecom, internet service providers, and universities across multiple...
A malicious NPM package has been found masquerading as the legitimate software library for Material Tailwind, once again indicating attempts on the...
As many as 350,000 open source projects are believed to be potentially vulnerable to exploitation as a result of a security flaw...
An unknown attacker targeted tens of thousands of unauthenticated Redis servers exposed on the internet in an attempt to install a cryptocurrency...
A threat cluster linked to the Russian nation-state actor tracked as Sandworm has continued its targeting of Ukraine with commodity malware by...
American video game publisher Rockstar Games on Monday revealed it was a victim of a “network intrusion” that allowed an unauthorized party...
Microsoft said it’s tracking an ongoing large-scale click fraud campaign targeting gamers by means of stealthily deployed browser extensions on compromised systems....
Uber, in an update, said there is “no evidence” that users’ private information was compromised in a breach of its internal computer...
Cybersecurity researchers have exposed new connections between a widely used pay-per-install (PPI) malware service known as PrivateLoader and another PPI platform offered...
An ongoing espionage campaign operated by the Russia-linked Gamaredon group is targeting employees of Ukrainian government, defense, and law enforcement agencies with...
A threat actor tracked under the moniker Webworm has been linked to bespoke Windows-based remote access trojans, some of which are said...
The U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) on Wednesday announced sweeping sanctions against ten individuals and two entities backed...
The operators behind the Lornenz ransomware operation have been observed exploiting a now-patched critical security flaw in Mitel MiVoice Connect to obtain...
Palo Alto Networks Unit 42 has detailed the inner workings of a malware called OriginLogger, which has been touted as a successor...
A zero-day flaw in the latest version of a WordPress premium plugin known as WPGateway is being actively exploited in the wild,...
Government and state-owned organizations in a number of Asian countries have been targeted by a distinct group of espionage hackers as part...
A new piece of stealthy Linux malware called Shikitega has been uncovered adopting a multi-stage infection chain to compromise endpoints and IoT...
A variant of the Mirai botnet known as MooBot is co-opting vulnerable D-Link devices into an army of denial-of-service bots by taking...
Networking equipment maker Zyxel has released patches for a critical security flaw impacting its network-attached storage (NAS) devices. Tracked as CVE-2022-34747 (CVSS...
A previously undocumented strain of Android spyware with extensive information gathering capabilities has been found disguised as a book likely designed to...
The notorious Android banking trojan known as SharkBot has once again made an appearance on the Google Play Store by masquerading as...