CISA Adds CrushFTP Vulnerability to KEV Catalog Following Confirmed Active Exploitation
Apr 08, 2025Ravie LakshmananCyber Attack / Vulnerability A recently disclosed critical security…
CISA and FBI Warn Fast Flux is Powering Resilient Malware, C2, and Phishing Networks
Apr 07, 2025Ravie LakshmananMalware / Network Security Cybersecurity agencies from Australia, Canada,…
Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code
Apr 04, 2025Ravie LakshmananVulnerability / Cloud Security A maximum severity security vulnerability…
OPSEC Failure Exposes Coquettte’s Malware Campaigns on Bulletproof Hosting Servers
Apr 04, 2025Ravie LakshmananThreat Intelligence / Malware A novice cybercrime actor has…
Malicious Python Packages on PyPI Downloaded 39,000+ Times, Steal Sensitive Data
Apr 05, 2025Ravie LakshmananMalware / Supply Chain Attack Cybersecurity researchers have uncovered…
North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm Packages
Apr 05, 2025Ravie LakshmananMalware / Supply Chain Attack The North Korean threat…
Microsoft Credits EncryptHub, Hacker Behind 618+ Breaches, for Disclosing Windows Flaws
A likely lone wolf actor behind the EncryptHub persona was acknowledged by…
Critical Ivanti Flaw Actively Exploited to Deploy TRAILBLAZE and BRUSHFIRE Malware
Ivanti has disclosed details of a now-patched critical security vulnerability impacting its…
Have We Reached a Distroless Tipping Point?
There's a virtuous cycle in technology that pushes the boundaries of what's…