Red Team

Martin Lewis Warns of Mobile Banking Risks Amid Surging Phone Thefts

Blue-Team

Martin Lewis Warns of Mobile Banking Risks Amid Surging Phone Thefts

Personal finance expert Martin Lewis has issued an urgent warning about the growing threat of mobile banking...

Illegal Sports Streaming Risks: UK Cities Named as Hotspots for Cyber Threats

News

Illegal Sports Streaming Risks: UK Cities Named as Hotspots for Cyber Threats

Streaming Cheltenham races or top-flight sports through illegal platforms not only risks a £1,000 fine but also...

FBI and CISA Alert: Medusa Ransomware Targets Email and VPN Services

Threat Intelligence

FBI and CISA Alert: Medusa Ransomware Targets Email and VPN Services

The FBI and CISA have issued a joint advisory warning Gmail, Outlook, and VPN users about an...

2025 Threat Detection Report: Key Strategies for Security Teams

Threat Intelligence

2025 Threat Detection Report: Key Strategies for Security Teams

The 2025 Threat Detection Report highlights critical trends and actionable strategies for security teams to counter emerging...

BlackLock Ransomware Infrastructure Compromised Through Leak Site Vulnerability

APT-News

BlackLock Ransomware Infrastructure Compromised Through Leak Site Vulnerability

Security researchers have successfully infiltrated the infrastructure of the BlackLock ransomware group by exploiting a vulnerability in...

OpenAI Raises Bug Bounty Rewards to $100,000 for Critical Vulnerabilities

Bug Bounties & Responsible Disclosure

OpenAI Raises Bug Bounty Rewards to $100,000 for Critical Vulnerabilities

OpenAI has significantly increased its maximum bug bounty payout from $20,000 to $100,000 for critical security vulnerabilities...

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

Threat Intelligence

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

A newly uncovered phishing-as-a-service (PhaaS) platform, named “Morphing Meerkat,” has been leveraging DNS mail exchange (MX) records...

Morphing Meerkat PhaaS Operation Leverages DNS-over-HTTPS for Evasion

Threat Intelligence

Morphing Meerkat PhaaS Operation Leverages DNS-over-HTTPS for Evasion

A newly identified phishing-as-a-service (PhaaS) operation, dubbed Morphing Meerkat by researchers, has adopted DNS-over-HTTPS (DoH) to bypass...

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

APT-News

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

Russian state-aligned hackers have launched a sophisticated phishing campaign impersonating the U.S. Central Intelligence Agency (CIA) to...

AI-Powered Red Teaming: Evolving Tactics in Cybersecurity

Red-Team

AI-Powered Red Teaming: Evolving Tactics in Cybersecurity

Recent research highlights a significant shift in red team operations as artificial intelligence becomes more sophisticated. A...

Blacklock Ransomware Infrastructure Compromised: Inside the Breach That Exposed Future Attacks

Threat Intelligence

Blacklock Ransomware Infrastructure Compromised: Inside the Breach That Exposed Future Attacks

In a significant blow to the Blacklock ransomware group, cybersecurity firm Resecurity exploited a vulnerability in the...

Massive JavaScript Injection Campaign Targets 150,000 Sites to Redirect Users to Chinese Gambling Platforms

Threat Intelligence

Massive JavaScript Injection Campaign Targets 150,000 Sites to Redirect Users to Chinese Gambling Platforms

A widespread cyber campaign has compromised approximately 150,000 legitimate websites by injecting malicious JavaScript code that redirects...

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

APT-News

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

An advanced persistent threat (APT) group linked to Pakistan has been observed impersonating India’s postal service to...

Firefox and Chrome Zero-Days Highlight Systemic Sandbox Risks

CVE News

Firefox and Chrome Zero-Days Highlight Systemic Sandbox Risks

Mozilla has released emergency updates to patch a critical sandbox escape vulnerability (CVE-2025-2857) in Firefox for Windows,...

Hijacked npm Packages Used to Steal API Keys via Obfuscated Scripts

Threat Intelligence

Hijacked npm Packages Used to Steal API Keys via Obfuscated Scripts

Cybersecurity researchers have uncovered a campaign involving hijacked npm packages, some over nine years old, that were...

Critical RCE Vulnerability in Shinetheme Traveler (CVE-2025-26873): Analysis and Mitigation

CVE News

Critical RCE Vulnerability in Shinetheme Traveler (CVE-2025-26873): Analysis and Mitigation

A critical remote code execution (RCE) vulnerability, tracked as CVE-2025-26873, has been disclosed in the Shinetheme Traveler...

Tencent’s $1.25B Investment in Ubisoft: Strategic Implications for Gaming and Cybersecurity

News

Tencent’s $1.25B Investment in Ubisoft: Strategic Implications for Gaming and Cybersecurity

Chinese tech giant Tencent has acquired a 25% stake in a newly formed Ubisoft subsidiary for $1.25...

March 2025 Threat Intelligence Update: YARA, Snort Rules, and Emerging Ransomware Threats

Threat Intelligence

March 2025 Threat Intelligence Update: YARA, Snort Rules, and Emerging Ransomware Threats

Security teams worldwide must stay updated on the latest detection rules and emerging threats to defend against...

Federal Judge Orders Trump Administration to Preserve Signal Messages Amid Legal Battle Over Record-Keeping Violations

Cyber Laws & Regulations

Federal Judge Orders Trump Administration to Preserve Signal Messages Amid Legal Battle Over Record-Keeping Violations

A federal judge has issued a directive to the Trump administration to preserve Signal messages exchanged among...

LummaC2 Malware Targets Windows Users Through Fake Total Commander Crack

Malware Analysis

LummaC2 Malware Targets Windows Users Through Fake Total Commander Crack

Security researchers have uncovered a sophisticated malware campaign distributing the LummaC2 information stealer disguised as a cracked...

Posts pagination

1 2 3 Next

Red Team

Martin Lewis Warns of Mobile Banking Risks Amid Surging Phone Thefts

Illegal Sports Streaming Risks: UK Cities Named as Hotspots for Cyber Threats

FBI and CISA Alert: Medusa Ransomware Targets Email and VPN Services

2025 Threat Detection Report: Key Strategies for Security Teams

BlackLock Ransomware Infrastructure Compromised Through Leak Site Vulnerability

OpenAI Raises Bug Bounty Rewards to $100,000 for Critical Vulnerabilities

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

AI-Powered Red Teaming: Evolving Tactics in Cybersecurity

Blacklock Ransomware Infrastructure Compromised: Inside the Breach That Exposed Future Attacks

Massive JavaScript Injection Campaign Targets 150,000 Sites to Redirect Users to Chinese Gambling Platforms

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

Firefox and Chrome Zero-Days Highlight Systemic Sandbox Risks

Hijacked npm Packages Used to Steal API Keys via Obfuscated Scripts

Critical RCE Vulnerability in Shinetheme Traveler (CVE-2025-26873): Analysis and Mitigation

Tencent’s $1.25B Investment in Ubisoft: Strategic Implications for Gaming and Cybersecurity

March 2025 Threat Intelligence Update: YARA, Snort Rules, and Emerging Ransomware Threats

Federal Judge Orders Trump Administration to Preserve Signal Messages Amid Legal Battle Over Record-Keeping Violations

LummaC2 Malware Targets Windows Users Through Fake Total Commander Crack

You may have missed

YesWiki Path Traversal Vulnerability (CVE-2025-31131): Technical Analysis and Mitigation

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

WpTravelly Plugin Vulnerability Exposes WordPress Sites to Object Injection Attacks

Critical SQL Injection Vulnerability in WooCommerce Order Splitter Plugin (CVE-2025-31089)