In one of the most significant blows to the underground data-leak economy, the U.S. Department of Justice...
Credential Theft
Cybersecurity researchers from Malwarebytes have identified a dangerous new campaign circulating a trojanized version of the popular...
Cybercriminals are leveraging the trust users place in their social media feeds to distribute stealthy information-stealing malware....
Ivanti has rolled out important security updates for its Endpoint Manager (EPM), addressing a pair of vulnerabilities...
A sweeping new analysis by the Microsoft Defender Security Research Team reveals a rapidly evolution in the...
A new, highly sophisticated malware strain is making the rounds on the cybercrime underground, targeting the massive...
A sophisticated new phishing campaign is targeting employees where they are most vulnerable—their paychecks—by leveraging QR codes...
A sophisticated new Android Remote Access Trojan (RAT) has surfaced in cybercrime networks, offering attackers a “turnkey”...
A persistent cyber-espionage campaign targeting Ukrainian webmail users has evolved its tactics to evade detection, leveraging a...
A new variant of the Phantom information stealer has emerged in the wild, masquerading as a routine...
A sophisticated new player has entered the Phishing-as-a-Service (PhaaS) market, offering cybercriminals a powerful toolset designed to...
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a high-severity alert regarding a critical flaw affecting...
A popular bioinformatics tool became the latest lure in a software supply chain attack, as threat actors...
Devolutions has released urgent security updates for its flagship self-hosted password management solution, Devolutions Server, addressing three...
eSentire’s Threat Response Unit (TRU) has uncovered a widespread malware operation leveraging a deceptive social-engineering technique known...
A new report from Group-IB exposes a highly automated phishing framework engineered to impersonate Italian IT and...
Researchers from Cyble Research and Intelligence Labs (CRIL) have uncovered a massive, multi-brand phishing campaign that uses...
Researchers at Proofpoint Threat Research have identified a previously unknown cyber-espionage group, dubbed UNK_SmudgedSerpent, which has been...
Koi Security has uncovered a massive supply-chain campaign dubbed PhantomRaven, which has silently infected the npm ecosystem...
The Socket Threat Research Team has uncovered an extensive supply chain attack targeting the npm ecosystem, involving...
The HelixGuard Threat Intelligence Team has uncovered a widespread supply chain compromise affecting the Visual Studio Code...
A newly disclosed vulnerability, CVE-2025-61481, rated a maximum CVSS score of 10.0, affects MikroTik RouterOS (v7.14.2) and...