New SHADOW#REACTOR malware campaign delivering Remcos RAT
The campaign appears to be opportunistic, mainly targeting enterprise and small-to-medium business environments.
Cybersecurity News - Page 20
Sweden detains ex-military IT consultant on suspicion of spying for Russia
The suspected criminal activity occurred throughout 2025 and into 2026, although investigators believe the alleged spying may have begun as early as 2022.
MuddyWater linked to Rust-based phishing campaign targeting Middle East
Historically, Muddy Water has relied on PowerShell and VBS loaders for initial access and post-compromise operations.
Crime-as-a-service providers equip Pig Butchering scammers with tools and infrastructure
Scammers can now buy solutions that allow them to run sophisticated fraud campaigns without advanced technical skills.
BreachForums user database leaked online after security lapse
An unknown actor has leaked an archive containing a MyBB users table and BreachForums’ private PGP key used to sign administrator messages.
Cyber Security Week in Review: January 9, 2025
In brief: Google fixes a high-severity Chrome flaw, a MongoDB flaw exploited in the wild, and more.
CISA says Microsoft Office and HPE OneView flaws exploited in the wild
At the time of writing, there are no confirmed public reports about attacks exploiting the above-mentioned vulnerabilities.
AI-powered VS Code forks expose developers to extension supply chain risks
Popular AI-powered forks of VS Code have been found to recommend extensions that do not exist in the Open VSX registry.
Malicious Chrome extensions caught stealing ChatGPT and DeepSeek conversations
The malicious add-ons masquerade as legitimate AI sidebar tools.
RCE flaw in legacy D-Link DSL gateway devices actively exploited in the wild
The vulnerability enables unauthenticated RCE by allowing attackers to inject and run shell commands on exposed devices.
Showing elements 191 - 200