Reconnaissance and cyberattacks from July 2024 to March 2025 hit 70+ firms, including SentinelOne, linked to Chinese threat ...

OpenAI banned ChatGPT accounts tied to Russian, Chinese, and Iranian hackers using AI for malware and influence campaigns.

CVE-2025-24016 is far from the only vulnerability to be abused by Mirai botnet variants. In recent attacks, threat actors have also taken advantage of CVE-2024-3721, a medium-severity command ...

A phishing campaign infects 722 users with malicious browser extensions in Latin America to steal bank login data.

In 2024, dormant accounts, unmanaged SaaS access, and GenAI permissions expose enterprises to data breaches and insider ...

IAM audit compliance does not have to be a daunting endeavor. Many tools available in the market can ease the burden of ...

Supply chain attack infects 16 GlueStack npm packages used by 1M weekly users, enabling malware that steals data and controls ...

A new malware campaign tricks macOS users with fake Spectrum CAPTCHA sites to steal passwords and deliver Atomic Stealer ...

AEV automates continuous attack simulations for organizations, helping prioritize exploitable risks and improve cyber ...

Then a couple of weeks ago, ESET noted that APT28 had leveraged cross-site scripting (XSS) vulnerabilities in various webmail servers such as Roundcube, Horde, MDaemon, and Zimbra to harvest ...

PathWiper malware hit Ukraine’s critical systems in 2025, wiping data via admin console access and worsening conflict-driven ...

Fake Gitcode and DocuSign sites are tricking users into running PowerShell scripts that install NetSupport RAT.