​Threat actors have been observed exploiting recently disclosed security flaws in SimpleHelp’s Remote Monitoring and Management (RMM) software as a precursor for what appears to be a ransomware attack. The… Read More »Hackers Exploiting SimpleHelp RMM Flaws for Persistent Access and Ransomware

​Ransomware attacks netted cybercrime groups a total of $813.5 million in 2024, a decline from $1.25 billion in 2023. The total amount extorted during the first half of 2024 stood… Read More »Ransomware Extortion Drops to $813.5M in 2024, Down from $1.25B in 2023

​Bogus websites advertising Google Chrome have been used to distribute malicious installers for a remote access trojan called ValleyRAT. The malware, first detected in 2023, is attributed to a threat… Read More »Fake Google Chrome Sites Distribute ValleyRAT Malware via DLL Hijacking

​The North Korea-linked nation-state hacking group known as Kimsuky has been observed conducting spear-phishing attacks to deliver an information stealer malware named forceCopy, according to new findings from the AhnLab… Read More »North Korean APT Kimsuky Uses forceCopy Malware to Steal Browser-Stored Credentials

​Privileged Access Management (PAM) has emerged as a cornerstone of modern cybersecurity strategies, shifting from a technical necessity to a critical pillar in leadership agendas. With the PAM market projected… Read More »The Evolving Role of PAM in Cybersecurity Leadership Agendas for 2025

​A new malware campaign dubbed SparkCat has leveraged a suit of bogus apps on both Apple’s and Google’s respective app stores to steal victims’ mnemonic phrases associated with cryptocurrency wallets. … Read More »SparkCat Malware Uses OCR to Extract Crypto Wallet Recovery Phrases from Images

​You arrive at the office, power up your system, and panic sets in. Every file is locked, and every system is frozen. A ransom demand flashes on your screen: “Pay… Read More »Top 3 Ransomware Threats Active in 2025

​Cisco has released updates to address two critical security flaws Identity Services Engine (ISE) that could allow remote attackers to execute arbitrary commands and elevate privileges on susceptible devices. The… Read More »Cisco Patches Critical ISE Vulnerabilities Enabling Root CmdExec and PrivEsc

​The North Korea-linked Lazarus Group has been linked to an active campaign that leverages fake LinkedIn job offers in the cryptocurrency and travel sectors to deliver malware capable of infecting… Read More »Cross-Platform JavaScript Stealer Targets Crypto Wallets in New Lazarus Group Campaign

​A previously undocumented threat actor known as Silent Lynx has been linked to cyber attacks targeting various entities in Kyrgyzstan and Turkmenistan. “This threat group has previously targeted entities around… Read More »Silent Lynx Using PowerShell, Golang, and C++ Loaders in Multi-Stage Cyberattacks