A coordinated espionage campaign targeted a Libyan oil refinery, a telecommunications organization, and a state institution … Libyan Oil Refinery Hit in Long-Running AsyncRAT Espionage CampaignRead more
Latest News
Critical NetScaler ADC and Gateway Vulnerabilities Enable Remote Attacks
Cloud Software Group has released urgent patches for NetScaler ADC and NetScaler Gateway, addressing two major … Critical NetScaler ADC and Gateway Vulnerabilities Enable Remote AttacksRead more
Critical QNAP QVR Pro Vulnerability Allows Remote Attackers System Access
QNAP Systems has released a critical security advisory for a severe vulnerability in its QVR Pro … Critical QNAP QVR Pro Vulnerability Allows Remote Attackers System AccessRead more
SEO Poisoning Campaign Impersonates 25+ Apps to Deliver AsyncRAT
A long-running SEO poisoning campaign has been targeting Windows users by impersonating popular software downloads and … SEO Poisoning Campaign Impersonates 25+ Apps to Deliver AsyncRATRead more
Tax-Themed Google Ads Deliver BYOVD EDR Killer in Malvertising Campaign
A large-scale malvertising campaign is abusing tax-season urgency to deploy a kernel-mode EDR killer through malicious … Tax-Themed Google Ads Deliver BYOVD EDR Killer in Malvertising CampaignRead more
Mazda Data Breach Exposes Employee and Partner Records
Mazda Motor Corporation has disclosed a security incident involving unauthorized access to an internal warehouse management … Mazda Data Breach Exposes Employee and Partner RecordsRead more
511,000+ End-of-Life Microsoft IIS Instances Exposed Online
Security researchers have identified over 511,000 end-of-life Microsoft IIS servers currently exposed to the internet, creating … 511,000+ End-of-Life Microsoft IIS Instances Exposed OnlineRead more
CISA Warns of Apple Vulnerabilities Linked to DarkSword iOS Exploit Chain
Cybersecurity authorities have issued an urgent alert about three critical Apple vulnerabilities actively exploited in the … CISA Warns of Apple Vulnerabilities Linked to DarkSword iOS Exploit ChainRead more
CanisterWorm Spreads Through npm Accounts Stealing Tokens
A new supply chain malware campaign called CanisterWorm is targeting the npm ecosystem by compromising publisher … CanisterWorm Spreads Through npm Accounts Stealing TokensRead more
$30 IP-KVM Flaws Could Enable BIOS-Level Control Across Enterprise Networks
Security researchers have uncovered nine critical vulnerabilities affecting low-cost IP-KVM devices that could allow attackers to … $30 IP-KVM Flaws Could Enable BIOS-Level Control Across Enterprise NetworksRead more