Threats

Akira ransomware deployed via CAPTCHA click on malicious website

Threats November 19, 2025

A significant ransomware attack, orchestrated by the Howling Scorpius cybercrime group, has crippled a global data storage and infrastructure company.…

New phishing kit exploits BitB technique to target Microsoft account credentials

Threats November 19, 2025

A new, highly sophisticated Sneaky2FA phishing kit is actively circulating, employing a deceptive Browser-in-the-Browser (BITB) technique to steal Microsoft account…

New .NET Malware Uses PNG/BMP Files to Obfuscate Lokibot

Threats November 19, 2025

A novel .NET-based malware loader is employing an innovative steganography technique to conceal the Lokibot trojan within image files, significantly…

Free VPN Extension Hijacks User Traffic and Steals Browsing Data

Threats November 19, 2025

A widespread browser campaign has infected millions of users through seemingly harmless “Free Unlimited VPN” Chrome extensions. These malicious tools,…

Princeton University Reports Data Breach Compromising Donor Database

Threats November 19, 2025

Princeton University experienced a significant data breach on November 10, 2025, when unauthorized actors accessed a database managed by its…

Eurofiber Reports Data Exfiltration Following System Vulnerability

Threats November 18, 2025

Eurofiber France is investigating a significant Eurofiber data breach that impacted its ticket management platform and customer portal systems. The…

Remcos RAT Command and Control Activity Mapped

Threats November 18, 2025

Remcos, a potent commercial Remote Access Trojan (RAT), has surged as a significant cybersecurity threat. Originally marketed as legitimate administrative…

Authorities Seize Thousands of Servers From Rogue Hosting Company Used in Cyberattacks

Threats November 18, 2025

Authorities have dismantled a significant criminal infrastructure after seizing thousands of servers from a rogue hosting company used to fuel…

WhatsApp screen-sharing scam facilitates data theft

Threats November 18, 2025

A pervasive new WhatsApp screen-sharing scam is rapidly emerging as a significant threat to smartphone users globally. This sophisticated social…

Lazarus Group deploys new ScoringMathTea RAT for remote command execution.

Threats November 18, 2025

The Lazarus APT group, a state-sponsored threat actor linked to North Korea, has introduced a new Remote Access Trojan (RAT)…

UNC1549 Hackers Employ Custom Tools to Target Aerospace and Defense Systems for Credential Theft

Threats November 18, 2025

A sophisticated Iranian-backed threat group, identified as UNC1549, has been actively conducting targeted cyberattacks against aerospace, aviation, and defense organizations…

Threat actors use compromised RDP logins to deploy ransomware after deleting backups.

Threats November 18, 2025

Lynx ransomware, a potent threat to enterprise environments, has been observed employing sophisticated attack strategies that prioritize data exfiltration and…

Trending

CISA adds actively exploited SolarWinds Serv-U DoS vulnerability to KEV catalog

AI Agent Discovers 21 Zero-Day Vulnerabilities in FFmpeg; Chrome Addresses 429 Bugs

Cisco Catalyst SD-WAN Manager Vulnerability Exploited, Patch Pending

Threats

Akira ransomware deployed via CAPTCHA click on malicious website

New phishing kit exploits BitB technique to target Microsoft account credentials

New .NET Malware Uses PNG/BMP Files to Obfuscate Lokibot

Free VPN Extension Hijacks User Traffic and Steals Browsing Data

Princeton University Reports Data Breach Compromising Donor Database

Eurofiber Reports Data Exfiltration Following System Vulnerability

Remcos RAT Command and Control Activity Mapped

Authorities Seize Thousands of Servers From Rogue Hosting Company Used in Cyberattacks

WhatsApp screen-sharing scam facilitates data theft

Lazarus Group deploys new ScoringMathTea RAT for remote command execution.

UNC1549 Hackers Employ Custom Tools to Target Aerospace and Defense Systems for Credential Theft

Threat actors use compromised RDP logins to deploy ransomware after deleting backups.