North Korean hackers exploit GitHub for attacks on South Korean targets
The attack begins with phishing emails carrying malicious Windows shortcut (LNK) files.
Cybersecurity News - Page 3
Chinese Storm-1175 uses n-days and zero-days in high-speed attacks
Storm-1175 targets new security flaws, sometimes exploiting them within a day of discovery or even before official patches are released.
Former IT engineer pleads guilty in failed cyber extortion scheme
Using an administrator account, Daniel Rhyne scheduled malicious tasks on the company’s Windows domain controller to delete admin accounts and reset passwords across the network.
Drift links $285M crypto heist to months-long N.Korea social engineering campaign
The attackers combined technical intrusion methods with real-world social engineering tactics.
Fortinet releases patch for actively exploited FortiClient EMS flaw
While a permanent fix is expected in the upcoming 7.4.7 release, Fortinet has issued a hotfix to mitigate the risk in affected versions.
Massive credential theft campaign exploits React2Shell flaw in Next.js apps
At least 766 systems spanning multiple cloud providers and geographic regions have already been compromised.
Cyber Security Week in Review: April 3, 2026
In brief: Google patches Chrome zero-day, Chinese hackers exploit zero-day flaw in TrueConf, and more.
China-linked TA416 expands espionage across Europe and Middle East
While some of TA416’s techniques, tactics and procedures remained unchanged, Proofpoint observed the group modifying its infection chains.
WhatsApp-based malware campaign exploits VBS scripts to deploy multi-stage attacks
The campaign combines social engineering with “living-off-the-land” techniques.
Google patches Chrome zero-day flaw
Google didn’t disclose any additional details regarding the nature of exploitation.
Showing elements 21 - 30