A Chinese-speaking threat actor tracked as UAT-6382 has been linked to the exploitation of a now-patched remote-code-execution...
A privilege escalation flaw has been demonstrated in Windows Server 2025 that makes it possible for attackers...
A recently patched pair of security flaws affecting Ivanti Endpoint Manager Mobile (EPMM) software has been exploited...
For many organizations, identity security appears to be under control. On paper, everything checks out. But new...
A sprawling operation undertaken by global law enforcement agencies and a consortium of private sector firms has...
Russian cyber threat actors have been attributed to a state-sponsored campaign targeting Western logistics entities and technology...
Continuous Integration and Continuous Delivery/Deployment (CI/CD) refers to practices that automate how code is developed and released...
Russian organizations have become the target of a phishing campaign that distributes malware called PureRAT, according to...
Counterfeit Facebook pages and sponsored ads on the social media platform are being employed to direct users...
It takes just one email to compromise an entire system. A single well-crafted message can bypass filters,...
Cybersecurity researchers have discovered a new campaign that employs malicious JavaScript injections to redirect site visitors on...
Google has announced a new feature in its Chrome browser that lets its built-in Password Manager automatically...
A threat actor known as Hazy Hawk has been observed hijacking abandoned cloud resources of high-profile organizations,...
100+ Fake Chrome Extensions Found Hijacking Sessions, Stealing Credentials, Injecting Ads
3 min read
An unknown threat actor has been attributed to creating several malicious Chrome Browser extensions since February 2024...
Cybersecurity researchers have discovered risky default identity and access management (IAM) roles impacting Amazon Web Services that...
Cybersecurity researchers have uncovered malicious packages uploaded to the Python Package Index (PyPI) repository that act as...
In the newly released 2025 State of Pentesting Report, Pentera surveyed 500 CISOs from global enterprises (200...
Threat hunters have exposed the tactics of a China-aligned threat actor called UnsolicitedBooker that targeted an unnamed...
Cybersecurity researchers are calling attention to a new Linux cryptojacking campaign that's targeting publicly accessible Redis servers.
The...
The official site for RVTools has been hacked to serve a compromised installer for the popular VMware...
