Your blog category
Cybersecurity researchers are calling attention to a large-scale spam campaign that has flooded the npm registry with thousands of fake packages since early 2024 as part of a likely financially… Read More »Over 46,000 Fake npm Packages Flood Registry in Worm-Like Spam Attack
Google has filed a civil lawsuit in the U.S. District Court for the Southern District of New York (SDNY) against China-based hackers who are behind a massive Phishing-as-a-Service (PhaaS) platform… Read More » Google Sues China-Based Hackers Behind $1 Billion Lighthouse Phishing Platform
Amazon’s threat intelligence team on Wednesday disclosed that it observed an advanced threat actor exploiting two then-zero-day security flaws in Cisco Identity Service Engine (ISE) and Citrix NetScaler ADC products… Read More »Amazon Uncovers Attacks Exploited Cisco ISE and Citrix NetScaler as Zero-Day Flaws
Microsoft on Tuesday released patches for 63 new security vulnerabilities identified in its software, including one that has come under active exploitation in the wild. Of the 63 flaws, four… Read More »Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack
Active Directory remains the authentication backbone for over 90% of Fortune 1000 companies. AD’s importance has grown as companies adopt hybrid and cloud infrastructure, but so has its complexity. Every application,… Read More »Active Directory Under Siege: Why Critical Infrastructure Needs Stronger Security
Every day, security teams face the same problem—too many risks, too many alerts, and not enough time. You fix one issue, and three more show up. It feels like you’re… Read More »[Webinar] Learn How Leading Security Teams Reduce Attack Surface Exposure with DASR
Google on Tuesday unveiled a new privacy-enhancing technology called Private AI Compute to process artificial intelligence (AI) queries in a secure platform in the cloud. The company said it has… Read More »Google Launches ‘Private AI Compute’ — Secure AI Processing with On-Device-Level Privacy
Threat hunters have uncovered similarities between a banking malware called Coyote and a newly disclosed malicious program dubbed Maverick that has been propagated via WhatsApp. According to a report from… Read More »WhatsApp Malware ‘Maverick’ Hijacks Browser Sessions to Target Brazil’s Biggest Banks
The malware known as GootLoader has resurfaced yet again after a brief spike in activity earlier this March, according to new findings from Huntress. The cybersecurity company said it observed… Read More »GootLoader Is Back, Using a New Font Trick to Hide Malware on WordPress Sites
Cybersecurity researchers have disclosed details of a new Android remote access trojan (RAT) called Fantasy Hub that’s sold on Russian-speaking Telegram channels under a Malware-as-a-Service (MaaS) model. According to its… Read More »Android Trojan ‘Fantasy Hub’ Malware Service Turns Telegram Into a Hub for Hackers