Russian APT Secret Blizzard uses ISP-level AitM attacks to deploy ApolloShadow malware on embassy devices in Moscow.

Threat actors abuse Proofpoint and Intermedia link wrapping to deliver phishing emails and steal Microsoft 365 credentials.

UNC2891 used a 4G Raspberry Pi and Linux rootkits to breach ATM networks, exposing flaws in banking infrastructure.

While SaaS-based SIEMs are marketed as a natural evolution, they often fall short of their on-prem predecessors in practice.

Critical WordPress flaw CVE-2025-5394 lets attackers take over sites using the "Alone" theme. 120K+ attempts blocked.

SentinelOne boosts enterprise cyber defense with AI-powered endpoint security, cutting response time and risk across ...

UNC4899 used job lures and cloud exploits to breach two firms, steal crypto, and embed malware in open source.

SAP flaw CVE-2025-31324 exploited to deploy Auto-Color malware at U.S. chemicals firm; Linux systems targeted.

Cybersecurity researchers are calling attention to an ongoing campaign that distributes fake cryptocurrency trading apps to ...

Pillar Security unveils full-lifecycle AI platform securing assets from design to runtime—critical for safe AI deployment.

Cybersecurity researchers have disclosed now-patched critical security flaws in the firmware of Dahua smart cameras that, if ...

Google has announced that it's making a security feature called Device Bound Session Credentials (DBSC) in open beta to ...