New IcedID variants shift from bank fraud to malware delivery
New IcedID variants have been found without the usual online banking fraud functionality and instead focus on installing further malware...
New IcedID variants have been found without the usual online banking fraud functionality and instead focus on installing further malware...
Pwn2Own Vancouver 2023 has ended with contestants earning $1,035,000 and a Tesla Model 3 car for 27 zero-day (and several...
Twitter has taken down internal source code for its platform and tools that was leaked on GitHub for months. Now it's...
Microsoft is introducing a new Exchange Online security feature that will automatically start throttling and eventually block all emails sent...
The Federal Bureau of Investigation is warning companies in the U.S. of threat actors using tactics similar to business email...
A new Emotet phishing campaign is targeting U.S. taxpayers by impersonating W-9 tax forms allegedly sent by the Internal Revenue...
A new ransomware operation named 'Dark Power' has appeared, and it has already listed its first victims on a dark...
American university researchers have developed a novel attack called "Near-Ultrasound Inaudible Trojan" (NUIT) that can launch silent attacks against devices...
Russia's Rostec has reportedly bought a platform that allows it to uncover the identities of anonymous Telegram users, likely to...
GitHub has rotated its private SSH key for GitHub.com after the secret was was accidentally published in a public GitHub repository. The software...
The U.K.'s National Crime Agency (NCA) revealed today that they created multiple fake DDoS-for-hire service websites to identify cybercriminals who utilize...
OpenAI says a Redis client open-source library bug was behind Monday's ChatGPT outage and data leak, where users saw other...
A cyberespionage hacking group tracked as 'Bitter APT' was recently seen targeting the Chinese nuclear energy industry using phishing emails...
Consumer goods giant Procter & Gamble has confirmed a data breach affecting an undisclosed number of employees after its GoAnywhere...
Microsoft today published a detailed guide aiming to help customers discover signs of compromise via exploitation of a recently patched...
Today, the FBI confirmed they have access to the database of the notorious BreachForums (aka Breached) hacking forum after the...
The Australian Federal Police (AFP) has arrested four members of a cybercriminal syndicate that has laundered $1.7 million stolen from...
On the third day of the Pwn2Own hacking contest, security researchers were awarded $185,000 after demonstrating 5 zero-day exploits targeting...
This week's news has been dominated by the Clop ransomware gang extorting companies whose GoAnywhere services were breached using a...
Self-hosted web administration solution CloudPanel was found to have several security issues, including using the same SSL certificate private key...
Cross-platform exploit code is now available for a high-severity Backup Service vulnerability impacting Veeam's Backup & Replication (VBR) software. The...
A malicious Python package on PyPI uses Unicode as an obfuscation technique to evade detection while stealing and exfiltrating developers'...
During the second day of Pwn2Own Vancouver 2023, competitors were awarded $475,000 after successfully exploiting 10 zero-days in multiple products....
The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has released a new open-source incident response tool that helps detect signs...