Offensive Security

MatrixPDF Toolkit Transforms PDFs into Advanced Phishing and Malware Lures

Threat Intelligence

MatrixPDF Toolkit Transforms PDFs into Advanced Phishing and Malware Lures

A new phishing and malware distribution toolkit called MatrixPDF enables attackers to convert ordinary PDF files into...

OpenAI’s Dynamic Safety Routing: A Technical Analysis of GPT-4o’s New Guardrails

Red-Team

OpenAI’s Dynamic Safety Routing: A Technical Analysis of GPT-4o’s New Guardrails

Recent user observations of GPT-4o conversations being unexpectedly rerouted to an unknown model have been confirmed as...

Supermicro BMC Vulnerabilities Expose Persistent Backdoor Risks in Server Firmware

CVE News

Supermicro BMC Vulnerabilities Expose Persistent Backdoor Risks in Server Firmware

Security researchers have identified new vulnerabilities in Supermicro’s Baseboard Management Controller (BMC) firmware that allow attackers to...

Global Law Enforcement Seizes $439 Million in Cybercrime Crackdown

Threat Intelligence

Global Law Enforcement Seizes $439 Million in Cybercrime Crackdown

In a significant blow to transnational cybercrime, a five-month international operation led by Interpol has resulted in...

EDR-Freeze: Abusing Windows Error Reporting to Suspend Security Software

Red-Team

EDR-Freeze: Abusing Windows Error Reporting to Suspend Security Software

A new proof-of-concept tool named EDR-Freeze demonstrates a significant evolution in attacker evasion techniques. Developed by security...

U.S. Sanctions Target Infrastructure and Operators Behind Southeast Asian Cyber Scam Networks

Threat Intelligence

U.S. Sanctions Target Infrastructure and Operators Behind Southeast Asian Cyber Scam Networks

The U.S. Department of the Treasury has initiated a significant, multi-phase sanctions campaign against the individuals and...

Geopolitical Implications of China’s Proposed Yuan-Backed Stablecoin

Threat Intelligence

Geopolitical Implications of China’s Proposed Yuan-Backed Stablecoin

A new legislative framework in Hong Kong is creating conditions for the potential development of state-controlled digital...

Image-Scaling Attacks: A New Vector for AI Prompt Injection and Data Exfiltration

Red-Team

Image-Scaling Attacks: A New Vector for AI Prompt Injection and Data Exfiltration

A new class of attack, exploiting the image preprocessing pipelines of multimodal AI systems, has been demonstrated...

Software Developer Sentenced for Deploying Logic Bomb and Kill Switch Against Former Employer

Cyber Laws & Regulations

Software Developer Sentenced for Deploying Logic Bomb and Kill Switch Against Former Employer

A software developer has been sentenced to four years in federal prison for a calculated act of...

Why Email Security Needs an EDR-Style Evolution for Modern Threats

Blue-Team

Why Email Security Needs an EDR-Style Evolution for Modern Threats

The current state of email security is analogous to the endpoint protection landscape a decade ago, relying...

Nebraska Cryptojacking Scheme Exploited Cloud Providers and Consent Frameworks for $3.5M Fraud

Red-Team

Nebraska Cryptojacking Scheme Exploited Cloud Providers and Consent Frameworks for $3.5M Fraud

A Nebraska man has been sentenced to one year in prison for orchestrating a $3.5 million cryptojacking...

Anthropic’s Claude AI Gains Autonomous Conversation Termination to Mitigate Abuse

News

Anthropic’s Claude AI Gains Autonomous Conversation Termination to Mitigate Abuse

Anthropic has implemented a new safety feature in its Claude AI models that allows the system to...

U.S. Sanctions Grinex Crypto-Exchange as Garantex Successor in Crackdown on Ransomware Money Laundering

Threat Intelligence

U.S. Sanctions Grinex Crypto-Exchange as Garantex Successor in Crackdown on Ransomware Money Laundering

The U.S. Department of the Treasury has imposed sanctions on Grinex, a cryptocurrency exchange identified as the...

Microsoft’s Removal of PowerShell 2.0: Security Implications and Migration Guidance

Blue-Team

Microsoft’s Removal of PowerShell 2.0: Security Implications and Migration Guidance

Microsoft has confirmed the removal of PowerShell 2.0 from Windows 11 and Windows Server systems starting August...

Windows 11 August 2025 Updates: Security Patches and New Features

CVE News

Windows 11 August 2025 Updates: Security Patches and New Features

Microsoft has released cumulative updates KB5063878 and KB5063875 for Windows 11 versions 24H2 and 23H2, addressing 107...

Elon Musk’s Legal Threats Against Apple and OpenAI: A Technical Analysis of the AI Antitrust Conflict

Threat Intelligence

Elon Musk’s Legal Threats Against Apple and OpenAI: A Technical Analysis of the AI Antitrust Conflict

The ongoing feud between Elon Musk, Apple, and OpenAI has escalated into a legal and technical battleground,...

Android’s pKVM Hypervisor Achieves SESIP Level 5 Certification: Security Implications and Technical Breakdown

News

Android’s pKVM Hypervisor Achieves SESIP Level 5 Certification: Security Implications and Technical Breakdown

Google has announced that its protected Kernel-based Virtual Machine (pKVM) for Android has achieved SESIP Level 5...

Gemini AI Hijacking via Poisoned Google Calendar Invites: Technical Breakdown

Red-Team

Gemini AI Hijacking via Poisoned Google Calendar Invites: Technical Breakdown

Google has patched a critical vulnerability that allowed attackers to remotely compromise Gemini AI agents through malicious...

The Evolution and Security Implications of QR Codes

News

The Evolution and Security Implications of QR Codes

QR codes have become ubiquitous in modern life, appearing on everything from product packaging to payment terminals....

GPT-5 Release: Security Implications and Technical Breakdown

Red-Team

GPT-5 Release: Security Implications and Technical Breakdown

OpenAI’s GPT-5 has officially launched, marking a significant leap in AI capabilities with its dual-model architecture and...

Posts pagination

1 2 3 4 … 9 Next

Offensive Security

MatrixPDF Toolkit Transforms PDFs into Advanced Phishing and Malware Lures

OpenAI’s Dynamic Safety Routing: A Technical Analysis of GPT-4o’s New Guardrails

Supermicro BMC Vulnerabilities Expose Persistent Backdoor Risks in Server Firmware

Global Law Enforcement Seizes $439 Million in Cybercrime Crackdown

EDR-Freeze: Abusing Windows Error Reporting to Suspend Security Software

U.S. Sanctions Target Infrastructure and Operators Behind Southeast Asian Cyber Scam Networks

Geopolitical Implications of China’s Proposed Yuan-Backed Stablecoin

Image-Scaling Attacks: A New Vector for AI Prompt Injection and Data Exfiltration

Software Developer Sentenced for Deploying Logic Bomb and Kill Switch Against Former Employer

Nebraska Cryptojacking Scheme Exploited Cloud Providers and Consent Frameworks for $3.5M Fraud

Anthropic’s Claude AI Gains Autonomous Conversation Termination to Mitigate Abuse

U.S. Sanctions Grinex Crypto-Exchange as Garantex Successor in Crackdown on Ransomware Money Laundering

Microsoft’s Removal of PowerShell 2.0: Security Implications and Migration Guidance

Windows 11 August 2025 Updates: Security Patches and New Features

Elon Musk’s Legal Threats Against Apple and OpenAI: A Technical Analysis of the AI Antitrust Conflict

Android’s pKVM Hypervisor Achieves SESIP Level 5 Certification: Security Implications and Technical Breakdown

Gemini AI Hijacking via Poisoned Google Calendar Invites: Technical Breakdown

The Evolution and Security Implications of QR Codes

GPT-5 Release: Security Implications and Technical Breakdown

You may have missed

Adobe Analytics Data Leak: Architectural Failure Exposes Cross-Tenant Data

Snapchat’s Shift to Paid Storage: A Technical Analysis of Cloud Service Monetization

Google’s Developer Registration Policy Threatens F-Droid’s Existence

Google Drive for Desktop Deploys AI-Powered Ransomware Detection and Recovery