A new wave of data breach disclosures linked to the Everest ransomware group has drawn attention to the expanding reach of organized cybercrime operations. Recent listings on underground leak forums...
Cybersecurity researchers have uncovered a stealthy new campaign attributed to North Korea-linked threat actors that directly targets software developers by abusing Visual Studio Code projects....
Cybersecurity researchers have identified a sophisticated new malware family known as PDFSider, a tool that blurs the line between traditional cyber-espionage operations and financially motivated...
Cybersecurity researchers are warning of a new phishing campaign that exploits LinkedIn messages to distribute remote access Trojans using a stealthy DLL sideloading technique. The operation reflects...
Security researchers have disclosed three critical vulnerabilities in Anthropic’s mcp-server-git, a Git server component designed for use within the Model Context Protocol ecosystem. The flaws, now...
A newly uncovered malware campaign known as Evelyn Stealer is drawing attention to a growing blind spot in developer security. By weaponizing malicious Visual Studio Code extensions, attackers have...
A sophisticated cyber espionage campaign dubbed Operation Covert Access has been uncovered targeting Argentina’s judicial sector, raising concerns about the growing maturity of malware written in...
A recent data breach at the prominent U.S. law firm Fried, Frank, Harris, Shriver & Jacobson LLP has led to the exposure of sensitive personal information connected to hundreds of individuals linked...
A critical security flaw in a widely used WordPress plugin has once again highlighted how third-party extensions can become a single point of failure for thousands of websites. A vulnerability...
The emergence of the VoidLink cloud malware has sparked fresh concern across the cybersecurity community, not because of its sheer scale, but because of how it appears to have been built. Security...
Ingram Micro, one of the world's largest technology distributors, has officially confirmed that a ransomware attack in July 2025 resulted in a significant data breach. The incident compromised the...
For nearly two decades, poor grammar and spelling mistakes served as one of the most reliable red flags in phishing detection. Security awareness training drilled the same advice into employees year...
TP-Link has released security patches addressing a high-severity vulnerability affecting its VIGI and InSight series surveillance cameras, after researchers confirmed that the flaw could allow remote...
Industrial automation giant ABB has issued a high-urgency security advisory warning customers of a critical vulnerability in its Ability™ OPTIMAX® energy management platform. The flaw allows...
As cyber threats continue to accelerate in speed, scale, and sophistication, traditional reactive security models are increasingly falling short. By 2026, threat hunting is no longer viewed as an...
Hacktivists briefly disrupted Iranian state television broadcasts after hijacking the Badr satellite feed, airing anti-regime messages and a call to protest attributed to Reza Pahlavi. The incident...
Cybersecurity researchers have uncovered a critical security flaw inside the administrative control panel of StealC, a widely used information-stealing malware, allowing defenders to quietly observe...
A newly disclosed vulnerability in the widely deployed All in One SEO plugin for WordPress has raised serious concerns across the web security community, after researchers confirmed that...
Prompt injection represents a critical security challenge in the era of generative artificial intelligence. At its core, this type of vulnerability allows malicious actors to manipulate AI models by...
LockBit has long been one of the most prolific ransomware operations in the global threat landscape, and the emergence of LockBit 5.0 marks a notable evolution rather than a simple version update....