“A boxer derives the greatest advantage from his sparring partner…”
— Epictetus, 50–135 AD
Hands up. Chin...
The Chinese threat actor known as FamousSparrow has been linked to a cyber attack targeting a trade...
The threat actor known as EncryptHub exploited a recently-patched security vulnerability in Microsoft Windows as a zero-day...
The Russian-speaking hacking group called RedCurl has been linked to a ransomware campaign for the first time,...
Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks
2 min read
Google has released out-of-band fixes to address a high-severity security flaw in its Chrome browser for Windows...
Broadcom has issued security patches to address a high-severity security flaw in VMware Tools for Windows that...
A major telecommunications company located in Asia was allegedly breached by Chinese state-sponsored hackers who spent over...
A new investigation has unearthed nearly 200 unique command-and-control (C2) domains associated with a malware called Raspberry...
Organizations now use an average of 112 SaaS applications—a number that keeps growing. In a 2024 study,...
Cybersecurity researchers are calling attention to an Android malware campaign that leverages Microsoft's .NET Multi-platform App UI...
Law enforcement authorities in seven African countries have arrested 306 suspects and confiscated 1,842 devices as part...
A set of five critical security shortcomings have been disclosed in the Ingress NGINX Controller for Kubernetes...
Microsoft on Monday announced a new feature called inline data protection for its enterprise-focused Edge for Business...
A ransomware-as-a-service (RaaS) operation called VanHelsing has already claimed three victims since it launched on March 7,...
A quiet tweak in a popular open-source tool opened the door to a supply chain breach—what started...
Cybersecurity researchers have uncovered two malicious extensions in the Visual Studio Code (VSCode) Marketplace that are designed...
If given the choice, most users are likely to favor a seamless experience over complex security measures,...
Critical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization Checks
1 min read
A critical security flaw has been disclosed in the Next.js React framework that could be potentially exploited...
GitHub Supply Chain Breach: Coinbase Attack Exposes 218 Repositories, Leaks CI/CD Secrets
5 min read
The supply chain attack involving the GitHub Action "tj-actions/changed-files" started as a highly-targeted attack against one of...
The U.S. Treasury Department has announced that it's removing sanctions against Tornado Cash, a cryptocurrency mixer service...
