​A maximum severity security vulnerability has been disclosed in Apache Parquet’s Java Library that, if successfully exploited, could allow a remote attacker to execute arbitrary code on susceptible instances. Apache… Read More »Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code

​The Computer Emergency Response Team of Ukraine (CERT-UA) has revealed that no less than three cyber attacks were recorded against state administration bodies and critical infrastructure facilities in the country… Read More »CERT-UA Reports Cyberattacks Targeting Ukrainian State Systems with WRECKSTEEL Malware

​Microsoft is warning of several phishing campaigns that are leveraging tax-related themes to deploy malware and steal credentials. “These campaigns notably use redirection methods such as URL shorteners and QR… Read More »Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware

​The North Korean threat actors behind Contagious Interview have adopted the increasingly popular ClickFix social engineering tactic to lure job seekers in the cryptocurrency sector to deliver a previously undocumented… Read More »Lazarus Group Targets Job Seekers With ClickFix Tactic to Deploy GolangGhost Malware

​AI holds the promise to revolutionize all sectors of enterpriseーfrom fraud detection and content personalization to customer service and security operations. Yet, despite its potential, implementation often stalls behind a… Read More »AI Adoption in the Enterprise: Breaking Through the Security and Compliance Gridlock

​The rules have changed. Again. Artificial intelligence is bringing powerful new tools to businesses. But it’s also giving cybercriminals smarter ways to attack. They’re moving quicker, targeting more precisely, and… Read More »AI Threats Are Evolving Fast — Learn Practical Defense Tactics in this Expert Webinar

​Cybersecurity researchers have disclosed details of a new vulnerability impacting Google’s Quick Share data transfer utility for Windows that could be exploited to achieve a denial-of-service (DoS) or send arbitrary… Read More »Google Patches Quick Share Vulnerability Enabling Silent File Transfers Without Consent

​Counterfeit versions of popular smartphone models that are sold at reduced prices have been found to be preloaded with a modified version of an Android malware called Triada. “More than… Read More »Triada Malware Preloaded on Counterfeit Android Phones Infects 2,600+ Devices

​In one of the largest coordinated law enforcement operations, authorities have dismantled Kidflix, a streaming platform that offered child sexual abuse material (CSAM). “A total of 1.8 million users worldwide… Read More »Europol Dismantles Kidflix With 72,000 CSAM Videos Seized in Major Operation

​Threat hunters are warning of a sophisticated web skimmer campaign that leverages a legacy application programming interface (API) from payment processor Stripe to validate stolen payment information prior to exfiltration.… Read More »Legacy Stripe API Exploited to Validate Stolen Payment Cards in Web Skimmer Campaign