Indian defense sector and government-aligned organizations have been targeted by multiple campaigns that are designed to compromise Windows and Linux environments with remote access trojans capable of stealing sensitive data… Read More »APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities
It’s Patch Tuesday, which means a number of software vendors have released patches for various security vulnerabilities impacting their products and services. Microsoft issued fixes for 59 flaws, including six… Read More »Over 60 Software Vendors Issue Security Fixes Across OS, Cloud, and Network Platforms
Intentionally vulnerable training applications are widely used for security education, internal testing, and product demonstrations. Tools such as OWASP Juice Shop, DVWA, Hackazon, and bWAPP are designed to be insecure… Read More »Exposed Training Open the Door for Crypto-Mining in Fortune 500 Cloud Environments
Cybersecurity researchers have disclosed details of a new botnet operation called SSHStalker that relies on the Internet Relay Chat (IRC) communication protocol for command-and-control (C2) purposes. “The toolset blends stealth… Read More »SSHStalker Botnet Uses IRC C2 to Control Linux Systems via Legacy Kernel Exploits
Microsoft on Tuesday released security updates to address a set of 59 flaws across its software, including six vulnerabilities that it said have been exploited in the wild. Of the… Read More »Microsoft Patches 59 Vulnerabilities Including Six Actively Exploited Zero-Days
The North Korea-linked threat actor known as UNC1069 has been observed targeting the cryptocurrency sector to steal sensitive data from Windows and macOS systems with the ultimate goal of facilitating… Read More »North Korea-Linked UNC1069 Uses AI Lures to Attack Cryptocurrency Organizations
The information technology (IT) workers associated with the Democratic People’s Republic of Korea (DPRK) are now applying to remote positions using real LinkedIn accounts of individuals they’re impersonating, marking a… Read More »DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies
Cybersecurity researchers have disclosed details of an emergent ransomware family dubbed Reynolds that comes embedded with a built-in bring your own vulnerable driver (BYOVD) component for defense evasion purposes within… Read More »Reynolds Ransomware Embeds BYOVD Driver to Disable EDR Security Tools
Are ransomware and encryption still the defining signals of modern cyberattacks, or has the industry been too fixated on noise while missing a more dangerous shift happening quietly all around… Read More »From Ransomware to Residency: Inside the Rise of the Digital Parasite
January 5, 2026, Seattle, USA — ZAST.AI announced the completion of a $6 million Pre-A funding round. This investment came from the well-known investment firm Hillhouse Capital, bringing ZAST.AI’s total… Read More »ZAST.AI Raises $6M Pre-A to Scale “Zero False Positive” AI-Powered Code Security