Threats

IBM Discovers Slopoly, Suspected AI-Generated Malware Linked to Hive0163 Ransomware Attacks

Threats March 16, 2026

A significant development in the cybersecurity landscape emerged in early 2026 when IBM X-Force researchers uncovered “Slopoly,” a novel malware…

ACRStealer Variant Employs Syscall Evasion, TLS C2, and Secondary Payload Delivery

Threats March 16, 2026

A new, sophisticated variant of the ACRStealer malware has been identified, exhibiting advanced evasion techniques and encrypted command-and-control (C2) communication.…

Konni APT Compromises KakaoTalk Accounts for Malware Distribution via Spear-Phishing

Threats March 16, 2026

A sophisticated cybercriminal group known as Konni APT has been identified orchestrating a multi-stage attack campaign that leverages spear-phishing emails…

Attackers Exploit Microsoft Teams and Quick Assist for Stealthy Backdoor Deployment

Threats March 16, 2026

A0Backdoor, a sophisticated new malware, is being deployed through a targeted social-engineering campaign that leverages Microsoft Teams and the Windows…

CISA warns of Ivanti Endpoint Manager authentication bypass vulnerability exploited in attacks

Threats March 10, 2026

The Cybersecurity and Infrastructure Security Agency (CISA) has formally warned of a critical authentication bypass vulnerability in Ivanti Endpoint Manager…

OpenClaw Advisory Surge Highlights GitHub Vulnerability Tracking Discrepancy

Threats March 10, 2026

The rapid surge in security advisories from the self-hosted AI agent OpenClaw has exposed a significant and growing divide between…

Chinese APT Group Utilizes PlugX to Target Qatar Amidst Middle East Conflict

Threats March 10, 2026

A sophisticated Chinese-linked cyberespionage campaign, attributed to the advanced persistent threat (APT) group Camaro Dragon, has targeted entities in Qatar…

Malware signed with legitimate certificates targets Teams and Zoom users with RMM backdoors.

Threats March 10, 2026

A sophisticated phishing campaign is exploiting the trust ingrained in familiar work applications, disguising malware as legitimate Microsoft Teams, Zoom,…

Researchers Identify GhostClaw as OpenClaw with Data Theft Capabilities

Threats March 10, 2026

A sophisticated malware campaign, known as GhostClaw, is actively targeting software developers by masquerading as a legitimate command-line installer for…

MaaS VIP Keylogger Campaign Employs Steganography, In-Memory Execution for Large-Scale Credential Theft

Threats March 10, 2026

A sophisticated credential-stealing campaign leveraging a stealthy tool known as VIP Keylogger has emerged as a significant threat to organizations…

Iranian cyber actors targeting U.S. critical infrastructure amid increased cyber threat activity

Threats March 9, 2026

Iran-linked hackers, identified as the advanced persistent threat (APT) group Seedworm, have been discovered actively infiltrating the networks of multiple…

BoryptGrab Stealer Exploits Fake GitHub Repositories to Steal Browser and Crypto Wallet Data

Threats March 9, 2026

A sophisticated new malware strain, dubbed BoryptGrab, is actively compromising Windows systems by masquerading as legitimate software within a network…

Trending

CISA adds actively exploited SolarWinds Serv-U DoS vulnerability to KEV catalog

AI Agent Discovers 21 Zero-Day Vulnerabilities in FFmpeg; Chrome Addresses 429 Bugs

Cisco Catalyst SD-WAN Manager Vulnerability Exploited, Patch Pending

Threats

IBM Discovers Slopoly, Suspected AI-Generated Malware Linked to Hive0163 Ransomware Attacks

ACRStealer Variant Employs Syscall Evasion, TLS C2, and Secondary Payload Delivery

Konni APT Compromises KakaoTalk Accounts for Malware Distribution via Spear-Phishing

Attackers Exploit Microsoft Teams and Quick Assist for Stealthy Backdoor Deployment

CISA warns of Ivanti Endpoint Manager authentication bypass vulnerability exploited in attacks

OpenClaw Advisory Surge Highlights GitHub Vulnerability Tracking Discrepancy

Chinese APT Group Utilizes PlugX to Target Qatar Amidst Middle East Conflict

Malware signed with legitimate certificates targets Teams and Zoom users with RMM backdoors.

Researchers Identify GhostClaw as OpenClaw with Data Theft Capabilities

MaaS VIP Keylogger Campaign Employs Steganography, In-Memory Execution for Large-Scale Credential Theft

Iranian cyber actors targeting U.S. critical infrastructure amid increased cyber threat activity

BoryptGrab Stealer Exploits Fake GitHub Repositories to Steal Browser and Crypto Wallet Data