Latest News

Threat players target Office 365 & Google Workspace in a new campaign, which uses a legitimate domain associated with a road-safety centre in Moscow to

German authorities have taken down the Hydra marketplace – a popular destination on the Dark Web for trading in illicit goods & services, including cyber-attack

Attackers are using a newly released remote access trojan (RAT) to spread ransomware & distributed denial of service (DDoS) in addition to the traditional RAT function of

A bug in Honda is typical of the car-attack surface that could give cyber-attackers easy access to victims, as global use of ‘smart car tech’

Apple rushed out patches for 2 zero-days affecting macOS & iOS Thur., both of which are likely under active exploitation & could allow a threat

Ghostwriter is one of 3 campaigns using war-themed attacks coming in from government-backed actors in China, Iran, North Korea & Russia. Ghostwriter – a threat

A security vulnerability has been found in the Spring Cloud Function, which could lead to remote code execution (RCE) & the compromise of an entire

A Ukrainian-based threat player is spearphishing Russians who are using services that have been banned by the Kremlin. A spearphishing campaign targeting Russian citizens & govt. entities

The ever-evolving banking trojan IcedID is back again with a phishing campaign that uses previously compromised Microsoft Exchange servers to send emails that appear to come from

2 separate campaigns from different threat players targeted users with the same exploit kit for more than a month before the company fixed an RCE

The US Department of Justice (DOJ) has indicted 4 Russian Govt. employees in connection to plots to cyber-fry critical infrastructure in the US & beyond, including at

Mustang Panda’s already sophisticated cyber-espionage campaign has matured even further with the introduction of a brand-new PlugX RAT variant. The Chinese Advanced Persistent Threat (APT)