Since the Iran war began in late February 2026, researchers have observed a sharp escalation in … TA453 and TA473 Drive Iran War‑Themed Phishing Across the Middle EastRead more
Latest News
Loblaw Data Breach: Threat Actor Gains Access to Internal IT Network and Customer Data
Loblaw Companies Limited—Canada’s largest food and pharmacy retailer—has confirmed a data breach affecting portions of its … Loblaw Data Breach: Threat Actor Gains Access to Internal IT Network and Customer DataRead more
Dohdoor Malware: Multi‑Stage DoH Backdoor Targeting U.S. Schools & Healthcare
A new threat cluster, UAT‑10027, is actively deploying a previously unseen backdoor called Dohdoor against U.S. … Dohdoor Malware: Multi‑Stage DoH Backdoor Targeting U.S. Schools & HealthcareRead more
Fake Zoom & Google Meet Phishing Attacks Deploy Teramind Spyware
A highly sophisticated phishing campaign is impersonating Zoom and Google Meet to install Teramind, a legitimate … Fake Zoom & Google Meet Phishing Attacks Deploy Teramind SpywareRead more
Metasploit’s February 2026 Update Delivers Powerful New Exploits and Evasion Tools
Rapid7 has released one of the most impactful Metasploit Framework updates in recent years, delivering seven … Metasploit’s February 2026 Update Delivers Powerful New Exploits and Evasion ToolsRead more
WebDAV Malware Delivery: How Hackers Exploit Windows File Explorer
Phishing is no longer confined to the browser. A fast‑growing tactic—WebDAV malware delivery—leverages legacy behavior in … WebDAV Malware Delivery: How Hackers Exploit Windows File ExplorerRead more
ARPA TLD Phishing: How IPv6 Tunnels Evade Enterprise Defenses
Phishing has evolved beyond look‑alike domains and typo‑squats. Recent research exposes ARPA TLD phishing, where threat … ARPA TLD Phishing: How IPv6 Tunnels Evade Enterprise DefensesRead more
State-Linked Threat Actors Used ChatGPT in Cyberattack Campaigns, OpenAI Confirms
OpenAI has publicly confirmed that state-linked cyber actors, including groups associated with China and Russia, exploited … State-Linked Threat Actors Used ChatGPT in Cyberattack Campaigns, OpenAI ConfirmsRead more
87% of Organizations Exposed: Known Exploited Vulnerabilities in Active Software
Datadog’s State of DevSecOps 2026 report delivers one of the clearest warnings yet: 87% of organizations … 87% of Organizations Exposed: Known Exploited Vulnerabilities in Active SoftwareRead more
RustFS Console XSS Flaw Exposes Admin S3 Credentials in Critical Attack
A newly disclosed vulnerability in the RustFS Console has been classified as a critical stored XSS … RustFS Console XSS Flaw Exposes Admin S3 Credentials in Critical AttackRead more