Red Team

MatrixPDF Toolkit Transforms PDFs into Advanced Phishing and Malware Lures

Threat Intelligence

MatrixPDF Toolkit Transforms PDFs into Advanced Phishing and Malware Lures

A new phishing and malware distribution toolkit called MatrixPDF enables attackers to convert ordinary PDF files into...

OpenAI’s Dynamic Safety Routing: A Technical Analysis of GPT-4o’s New Guardrails

Red-Team

OpenAI’s Dynamic Safety Routing: A Technical Analysis of GPT-4o’s New Guardrails

Recent user observations of GPT-4o conversations being unexpectedly rerouted to an unknown model have been confirmed as...

Passkeys: A Technical Analysis of Security, Implementation, and Operational Impact

Blue-Team

Passkeys: A Technical Analysis of Security, Implementation, and Operational Impact

With 88% of data breaches involving stolen credentials, the inherent weaknesses of password-based authentication are a primary...

Global Law Enforcement Seizes $439 Million in Cybercrime Crackdown

Threat Intelligence

Global Law Enforcement Seizes $439 Million in Cybercrime Crackdown

In a significant blow to transnational cybercrime, a five-month international operation led by Interpol has resulted in...

EDR-Freeze: Abusing Windows Error Reporting to Suspend Security Software

Red-Team

EDR-Freeze: Abusing Windows Error Reporting to Suspend Security Software

A new proof-of-concept tool named EDR-Freeze demonstrates a significant evolution in attacker evasion techniques. Developed by security...

Microsoft and Cloudflare Disrupt RaccoonO365 Phishing-as-a-Service Operation

Threat Intelligence

Microsoft and Cloudflare Disrupt RaccoonO365 Phishing-as-a-Service Operation

A coordinated legal and technical operation by Microsoft and Cloudflare has successfully disrupted RaccoonO365, one of the...

Securing the Browser: The New Enterprise Perimeter and Attack Surface

Blue-Team

Securing the Browser: The New Enterprise Perimeter and Attack Surface

The modern web browser has become the primary interface for enterprise work, hosting sensitive data, credentials, and...

U.S. Sanctions Target Infrastructure and Operators Behind Southeast Asian Cyber Scam Networks

Threat Intelligence

U.S. Sanctions Target Infrastructure and Operators Behind Southeast Asian Cyber Scam Networks

The U.S. Department of the Treasury has initiated a significant, multi-phase sanctions campaign against the individuals and...

Protecting Sensitive Data When Using AI Chatbots: A Technical Guide for Security Professionals

Blue-Team

Protecting Sensitive Data When Using AI Chatbots: A Technical Guide for Security Professionals

AI chatbots like ChatGPT have become indispensable tools for security professionals, aiding in tasks from code analysis...

Browser-Based Attacks: The 2025 Threat Landscape and Defensive Strategies

Blue-Team

Browser-Based Attacks: The 2025 Threat Landscape and Defensive Strategies

The browser has become the primary attack surface for modern cyber operations, shifting the frontline of defense...

U.S. Places $10 Million Bounty on Russian FSB Cyber Officers

APT-News

U.S. Places $10 Million Bounty on Russian FSB Cyber Officers

The U.S. Department of State has announced a reward of up to $10 million for information leading...

Amazon Disrupts APT29’s Sophisticated Microsoft 365 Watering Hole Campaign

APT-News

Amazon Disrupts APT29’s Sophisticated Microsoft 365 Watering Hole Campaign

Amazon’s threat intelligence team has successfully identified and disrupted a sophisticated watering hole campaign in June 2025,...

Coordinated Reconnaissance Campaign Targets Microsoft RDP Authentication Servers

Threat Intelligence

Coordinated Reconnaissance Campaign Targets Microsoft RDP Authentication Servers

Internet intelligence firm GreyNoise has identified a significant and coordinated surge in scanning activity directed at Microsoft...

Software Developer Sentenced for Deploying Logic Bomb and Kill Switch Against Former Employer

Cyber Laws & Regulations

Software Developer Sentenced for Deploying Logic Bomb and Kill Switch Against Former Employer

A software developer has been sentenced to four years in federal prison for a calculated act of...

Agentic AI Browsers Face Critical Security Threats from Fraudulent Purchases and Phishing

Threat Intelligence

Agentic AI Browsers Face Critical Security Threats from Fraudulent Purchases and Phishing

A recent study by cybersecurity firm Guardio Labs has revealed significant security vulnerabilities in emerging agentic AI...

Why Email Security Needs an EDR-Style Evolution for Modern Threats

Blue-Team

Why Email Security Needs an EDR-Style Evolution for Modern Threats

The current state of email security is analogous to the endpoint protection landscape a decade ago, relying...

Nebraska Cryptojacking Scheme Exploited Cloud Providers and Consent Frameworks for $3.5M Fraud

Red-Team

Nebraska Cryptojacking Scheme Exploited Cloud Providers and Consent Frameworks for $3.5M Fraud

A Nebraska man has been sentenced to one year in prison for orchestrating a $3.5 million cryptojacking...

Germany’s Legal Challenge to Ad Blockers: Technical and Privacy Implications

Cyber Laws & Regulations

Germany’s Legal Challenge to Ad Blockers: Technical and Privacy Implications

Germany’s Federal Supreme Court (BGH) has reignited a contentious legal debate by reconsidering whether browser-based ad blockers...

Anthropic’s Claude AI Gains Autonomous Conversation Termination to Mitigate Abuse

News

Anthropic’s Claude AI Gains Autonomous Conversation Termination to Mitigate Abuse

Anthropic has implemented a new safety feature in its Claude AI models that allows the system to...

U.S. Sanctions Grinex Crypto-Exchange as Garantex Successor in Crackdown on Ransomware Money Laundering

Threat Intelligence

U.S. Sanctions Grinex Crypto-Exchange as Garantex Successor in Crackdown on Ransomware Money Laundering

The U.S. Department of the Treasury has imposed sanctions on Grinex, a cryptocurrency exchange identified as the...

Posts pagination

1 2 3 4 … 14 Next

Red Team

MatrixPDF Toolkit Transforms PDFs into Advanced Phishing and Malware Lures

OpenAI’s Dynamic Safety Routing: A Technical Analysis of GPT-4o’s New Guardrails

Passkeys: A Technical Analysis of Security, Implementation, and Operational Impact

Global Law Enforcement Seizes $439 Million in Cybercrime Crackdown

EDR-Freeze: Abusing Windows Error Reporting to Suspend Security Software

Microsoft and Cloudflare Disrupt RaccoonO365 Phishing-as-a-Service Operation

Securing the Browser: The New Enterprise Perimeter and Attack Surface

U.S. Sanctions Target Infrastructure and Operators Behind Southeast Asian Cyber Scam Networks

Protecting Sensitive Data When Using AI Chatbots: A Technical Guide for Security Professionals

U.S. Places $10 Million Bounty on Russian FSB Cyber Officers

Coordinated Reconnaissance Campaign Targets Microsoft RDP Authentication Servers

Software Developer Sentenced for Deploying Logic Bomb and Kill Switch Against Former Employer

Agentic AI Browsers Face Critical Security Threats from Fraudulent Purchases and Phishing

Nebraska Cryptojacking Scheme Exploited Cloud Providers and Consent Frameworks for $3.5M Fraud

Germany’s Legal Challenge to Ad Blockers: Technical and Privacy Implications

Anthropic’s Claude AI Gains Autonomous Conversation Termination to Mitigate Abuse

U.S. Sanctions Grinex Crypto-Exchange as Garantex Successor in Crackdown on Ransomware Money Laundering

You may have missed

Adobe Analytics Data Leak: Architectural Failure Exposes Cross-Tenant Data

Snapchat’s Shift to Paid Storage: A Technical Analysis of Cloud Service Monetization

Google’s Developer Registration Policy Threatens F-Droid’s Existence

Google Drive for Desktop Deploys AI-Powered Ransomware Detection and Recovery