An audacious fraud campaign has emerged on the social network Threads, where perpetrators openly sell stolen user financial data on the platform. SpyCloud researcher Kayla Cardona reported coming across such posts while simply scrolling...
The United States has charged Maksim Rudometov, suspected of developing and administering one of the most notorious malware programs in recent years—RedLine. This malware has been extensively used in the cybercriminal underworld to steal...
Three malicious packages, uploaded to the npm repository in September 2024, contained the well-known BeaverTail malware—a JavaScript loader and data theft tool linked to a North Korean campaign named “Contagious Interview.” The Datadog Security...
Over three dozen vulnerabilities have been identified across various open-source artificial intelligence and machine learning models, some of which enable attackers to execute remote code and steal data. Through the Protect AI bounty platform...
Cybersecurity researchers at SonicWall have released an in-depth analysis of a critical remote code execution (RCE) vulnerability in VMware vCenter Server. The vulnerability, identified as CVE-2024-38812, is linked to a heap overflow flaw within...
Cisco has introduced new security features for its ASA and Firepower Threat Defense (FTD) devices, aimed at defending against brute-force and password spraying attacks. Password spraying attacks involve attempting a single password across multiple...
Hackers are exploiting a vulnerability in SonicWall VPN to launch ransomware attacks using the Fog and Akira strains. Experts believe they are taking advantage of CVE-2024-40766—a critical flaw in the SSL VPN access control...
The Italian police are investigating a case of unauthorized access to government databases, which has led to the house arrest of four individuals and inquiries involving dozens of others, including Leonardo Maria Del Vecchio,...
The TeamTNT group is preparing for a major new campaign targeting cloud environments to mine cryptocurrencies and rent compromised servers to third parties. Experts at AquaSec have observed the group’s activity, which exploits vulnerable...
The hacker group RansomHub has claimed responsibility for a cyberattack on the operator of 13 airports in Mexico. Grupo Aeroportuario del Centro Norte (OMA), which oversees airports in the central and northern regions of...
The FBI and CISA have reported that Chinese hackers breached the systems of American commercial telecommunications companies. The agencies notified the affected organizations of the security breach, offered technical assistance, and alerted other potential...
The Dutch National Police announced that they have gained full access to all servers used to distribute Redline and Meta malware—two of the most widely utilized cybercriminal tools on the web. Infostealers pose a...
