PXA Stealer was first documented by Cisco Talos in November 2024, attributing it to attacks targeting government and ...

mDNS and DNS spoofing are common tactics that trick devices into trusting malicious sources. Attackers exploit mDNS on local ...

Cybersecurity researchers have discovered a nascent Android remote access trojan (RAT) called PlayPraetor that has infected ...

Regularly scan for any new AI services or features popping up in your SaaS environment, and evaluate any updates to vendors' ...

DDoS attacks historically relied on volume and persistence. But if AI is embedded in the attacker's toolkit, the rules change ...

Everyone's an IT decision-maker now. The employees in your organization can install a plugin with just one click, and they don't need to clear it with your team first. It's great for productivity, but ...

"The implant is built as a malicious PAM (Pluggable Authentication Module), enabling attackers to silently bypass system ...

State-backed hackers breached Southeast Asia telecoms using advanced tools—no data stolen, but stealth access achieved.

The activity has been attributed to Storm-2603, which, according to Microsoft, is a suspected China-based threat actor that ...

Threat actors abuse Proofpoint and Intermedia link wrapping to deliver phishing emails and steal Microsoft 365 credentials.

The ongoing campaign, first detected in early 2025, is designed to use the OAuth applications as a gateway to obtain ...

Furthermore, the governments called out Scattered Spider's use of readily available malware tools like Ave Maria (aka Warzone ...