Cyber News

PyPI Warns of Ongoing Phishing Campaign Using Fake Verification Emails and Lookalike Domain

PyPI Warns of Ongoing Phishing Campaign Using Fake Veri...

The maintainers of the Python Package Index (PyPI) repository have issued a warn...

CISA Adds PaperCut NG/MF CSRF Vulnerability to KEV Catalog Amid Active Exploitation

CISA Adds PaperCut NG/MF CSRF Vulnerability to KEV Cata...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added...

⚡ Weekly Recap — SharePoint Breach, Spyware, IoT Hijacks, DPRK Fraud, Crypto Drains and More

⚡ Weekly Recap — SharePoint Breach, Spyware, IoT Hijac...

Some risks don’t breach the perimeter—they arrive through signed software, clean...

Hackers Breach Toptal GitHub, Publish 10 Malicious npm Packages With 5,000 Downloads

Hackers Breach Toptal GitHub, Publish 10 Malicious npm ...

In what's the latest instance of a software supply chain attack, unknown threat ...

Email Security Is Stuck in the Antivirus Era: Why It Needs a Modern Approach

Email Security Is Stuck in the Antivirus Era: Why It Ne...

Picture this: you’ve hardened every laptop in your fleet with real‑time telemetr...

Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure

Scattered Spider Hijacks VMware ESXi to Deploy Ransomwa...

The notorious cybercrime group known as Scattered Spider is targeting VMware ESX...

Critical Flaws in Niagara Framework Threaten Smart Buildings and Industrial Systems Worldwide

Critical Flaws in Niagara Framework Threaten Smart Buil...

Cybersecurity researchers have discovered over a dozen security vulnerabilities ...

SharePoint under fire: ToolShell attacks hit organizations worldwide

SharePoint under fire: ToolShell attacks hit organizati...

The ToolShell bugs are being exploited by cybercriminals and APT groups alike, w...

U.S. Sanctions Firm Behind N. Korean IT Scheme; Arizona Woman Jailed for Running Laptop Farm

U.S. Sanctions Firm Behind N. Korean IT Scheme; Arizona...

The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) sa...

Patchwork Targets Turkish Defense Firms with Spear-Phishing Using Malicious LNK Files

Patchwork Targets Turkish Defense Firms with Spear-Phis...

The threat actor known as Patchwork has been attributed to a new spear-phishing ...

Cyber Espionage Campaign Hits Russian Aerospace Sector Using EAGLET Backdoor

Cyber Espionage Campaign Hits Russian Aerospace Sector ...

Russian aerospace and defense industries have become the target of a cyber espio...

ToolShell: An all-you-can-eat buffet for threat actors

ToolShell: An all-you-can-eat buffet for threat actors

ESET Research has been monitoring attacks involving the recently discovered Tool...

Rogue CAPTCHAs: Look out for phony verification pages spreading malware

Rogue CAPTCHAs: Look out for phony verification pages s...

Before rushing to prove that you're not a robot, be wary of deceptive human veri...

Soco404 and Koske Malware Target Cloud Services with Cross-Platform Cryptomining Attacks

Soco404 and Koske Malware Target Cloud Services with Cr...

Threat hunters have disclosed two different malware campaigns that have targeted...

Overcoming Risks from Chinese GenAI Tool Usage

Overcoming Risks from Chinese GenAI Tool Usage

A recent analysis of enterprise data suggests that generative AI tools developed...

Critical Mitel Flaw Lets Hackers Bypass Login, Gain Full Access to MiVoice MX-ONE Systems

Critical Mitel Flaw Lets Hackers Bypass Login, Gain Ful...

Mitel has released security updates to address a critical security flaw in MiVoi...

49
50
51
52
53