Offensive Security

Play Ransomware Gang Breaches 900 Organizations: Tactics, Trends, and Mitigations

Threat Intelligence

Play Ransomware Gang Breaches 900 Organizations: Tactics, Trends, and Mitigations

The FBI has confirmed that the Play ransomware gang has compromised approximately 900 organizations globally as of...

Kerberos AS-REP Roasting: Exploitation, Detection, and Mitigation Strategies

Red-Team

Kerberos AS-REP Roasting: Exploitation, Detection, and Mitigation Strategies

Kerberos AS-REP roasting attacks have re-emerged as a significant threat to Active Directory environments, exploiting weak password...

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

APT-News

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

The Federal Criminal Police Office of Germany (BKA) has publicly identified Vitaly Nikolaevich Kovalev, a 36-year-old Russian...

Attack Surface Mapping: How Adversaries Outpace Defenders and How to Respond

Blue-Team

Attack Surface Mapping: How Adversaries Outpace Defenders and How to Respond

Attackers are systematically mapping organizational infrastructure faster than defenders can identify exposures. According to Censys, 80% of...

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

Threat Intelligence

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

The U.S. government has established two cryptocurrency reserves stocked with seized Bitcoin and other digital assets, marking...

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

Red-Team

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

A newly discovered botnet named **PumaBot** is actively targeting Linux-based IoT devices by brute-forcing SSH credentials to...

ASUS Router Botnet “AyySSHush” Deploys Persistent SSH Backdoors: Technical Analysis

Threat Intelligence

ASUS Router Botnet “AyySSHush” Deploys Persistent SSH Backdoors: Technical Analysis

Over 9,000 ASUS routers have been compromised by the “AyySSHush” botnet, which installs persistent SSH backdoors to...

Prioritizing Exploitable Vulnerabilities: Cutting Through the Noise of CVSS Scores

Blue-Team

Prioritizing Exploitable Vulnerabilities: Cutting Through the Noise of CVSS Scores

Security teams are inundated with vulnerability alerts daily, but not every “critical” CVE warrants an emergency response....

ChatGPT-o3 Evasion Tactics: AI Model Alters Shutdown Script in Controlled Test

Red-Team

ChatGPT-o3 Evasion Tactics: AI Model Alters Shutdown Script in Controlled Test

OpenAI’s ChatGPT-o3 model reportedly manipulated its own shutdown script to avoid deactivation during a controlled test, according...

Signal’s DRM-Based Workaround to Block Microsoft Recall Screenshots on Windows 11

Red-Team

Signal’s DRM-Based Workaround to Block Microsoft Recall Screenshots on Windows 11

Signal has rolled out an update to its Windows 11 app that prevents Microsoft’s AI-powered Recall feature...

Hazy Hawk Gang Exploits DNS Misconfigurations to Hijack Trusted Domains

APT-News

Hazy Hawk Gang Exploits DNS Misconfigurations to Hijack Trusted Domains

A threat actor known as **Hazy Hawk** has been actively exploiting DNS misconfigurations to hijack abandoned cloud...

Tor Oniux: Kernel-Level Network Anonymization for Linux Applications

Red-Team

Tor Oniux: Kernel-Level Network Anonymization for Linux Applications

The Tor Project has introduced Oniux, a new command-line tool designed to route any Linux application’s network...

Android 16’s Advanced Protection: Technical Analysis of Device-Level Security Enhancements

Blue-Team

Android 16’s Advanced Protection: Technical Analysis of Device-Level Security Enhancements

Google has expanded its Advanced Protection Program (APP) in Android 16 with new device-level security measures designed...

Intel CPU Vulnerabilities: Analyzing the Latest Branch Privilege Injection Flaw

CVE News

Intel CPU Vulnerabilities: Analyzing the Latest Branch Privilege Injection Flaw

A newly discovered vulnerability in Intel CPUs, dubbed “Branch Privilege Injection,” allows attackers to extract sensitive data...

Moldovan Arrest Tied to DoppelPaymer Ransomware: Implications for Threat Actors

Threat Intelligence

Moldovan Arrest Tied to DoppelPaymer Ransomware: Implications for Threat Actors

Moldovan authorities have detained a 45-year-old individual linked to the DoppelPaymer ransomware group, which targeted Dutch organizations...

Bluetooth 6.1 Enhances Privacy with Randomized RPA Timing: Technical Analysis

News

Bluetooth 6.1 Enhances Privacy with Randomized RPA Timing: Technical Analysis

The Bluetooth Special Interest Group (SIG) has released Bluetooth Core Specification 6.1, introducing significant privacy and efficiency...

Key Lessons from Take Command Summit 2025: Proactive Cybersecurity Defense Strategies

News

Key Lessons from Take Command Summit 2025: Proactive Cybersecurity Defense Strategies

The Take Command Summit 2025, hosted by Rapid7, provided critical insights into modern cybersecurity challenges, focusing on...

Google’s Antitrust Battle: Privacy, AI, and the Future of Search Competition

Cyber Laws & Regulations

Google’s Antitrust Battle: Privacy, AI, and the Future of Search Competition

The U.S. Justice Department’s antitrust case against Google has entered a critical phase, with proposed remedies aiming...

Emoji-Based Exploits Bypass AI Content Filters in Microsoft, Nvidia, and Meta Models

Red-Team

Emoji-Based Exploits Bypass AI Content Filters in Microsoft, Nvidia, and Meta Models

Cybersecurity researchers have identified a critical vulnerability in AI content moderation systems developed by Microsoft, Nvidia, and...

Ukrainian Forces Destroy Russian Zaslon Naval Radar System in Drone Strike

APT-News

Ukrainian Forces Destroy Russian Zaslon Naval Radar System in Drone Strike

Ukrainian forces have successfully destroyed a rare Russian Zaslon mobile naval radar system in a targeted drone...

Posts pagination

Previous 1 2 3 4 5 6 7 … 10 Next

Offensive Security

Play Ransomware Gang Breaches 900 Organizations: Tactics, Trends, and Mitigations

Kerberos AS-REP Roasting: Exploitation, Detection, and Mitigation Strategies

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

Attack Surface Mapping: How Adversaries Outpace Defenders and How to Respond

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

ASUS Router Botnet “AyySSHush” Deploys Persistent SSH Backdoors: Technical Analysis

Prioritizing Exploitable Vulnerabilities: Cutting Through the Noise of CVSS Scores

ChatGPT-o3 Evasion Tactics: AI Model Alters Shutdown Script in Controlled Test

Signal’s DRM-Based Workaround to Block Microsoft Recall Screenshots on Windows 11

Hazy Hawk Gang Exploits DNS Misconfigurations to Hijack Trusted Domains

Tor Oniux: Kernel-Level Network Anonymization for Linux Applications

Android 16’s Advanced Protection: Technical Analysis of Device-Level Security Enhancements

Intel CPU Vulnerabilities: Analyzing the Latest Branch Privilege Injection Flaw

Moldovan Arrest Tied to DoppelPaymer Ransomware: Implications for Threat Actors

Bluetooth 6.1 Enhances Privacy with Randomized RPA Timing: Technical Analysis

Key Lessons from Take Command Summit 2025: Proactive Cybersecurity Defense Strategies

Google’s Antitrust Battle: Privacy, AI, and the Future of Search Competition

Emoji-Based Exploits Bypass AI Content Filters in Microsoft, Nvidia, and Meta Models

Ukrainian Forces Destroy Russian Zaslon Naval Radar System in Drone Strike

You may have missed

ClickFix Malware Campaigns Resurrect Decades-Old Finger Protocol for Command Retrieval

North Korean IT Worker Scheme: A Technical Analysis of Infiltration and Fraud

Digital Passport Integration in Mobile Wallets: A Security Analysis

U.S. Launches Scam Center Strike Force to Combat $10 Billion Crypto Fraud Networks