The Russian state-sponsored threat actor known as APT29 has been linked to an advanced phishing campaign that's targeting ...

A Chinese-affiliated threat actor known for its cyber-attacks in Asia has been observed exploiting a security flaw in security software from ESET to deliver a previously undocumented malware codenamed ...

Cybersecurity researchers have uncovered three malicious packages in the npm registry that masquerade as a popular Telegram ...

ASUS has disclosed a critical security flaw impacting routers with AiCloud enabled that could permit remote attackers to ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a security flaw impacting SonicWall ...

CVE-2025-32433 in Erlang SSH scores 10.0 CVSS, enables unauthenticated code execution on telecom and IoT systems.

Smishing kits by Wang Duo Yu enabled toll fraud in 8 U.S. states since Oct 2024, stealing user data via fake E-ZPass pages.

The flaw is assessed to be a variant of CVE-2024-43451 (CVSS score: 6.5), which was patched by Microsoft in November 2024 and ...

In case of a .NET executable, the encrypted embedded payload – an Agent Tesla variant suspected to be Snake Keylogger or ...

XorDDoS is a well-known malware that has a track record of striking Linux systems for over a decade. In May 2022, Microsoft ...

Capping off the new additions to the Mustang Panda's malware arsenal is SplatCloak, a Windows kernel driver deployed by ...

ClickFix malware tactic used by Iran, Russia, and North Korea from Nov 2024–Feb 2025 replaces payload delivery in major ...