FIN7 Deploys Anubis Backdoor to Hijack Windows Systems via Compromised SharePoint Sites
Apr 02, 2025Ravie LakshmananRansomware / Email Security The financially motivated threat actor…
Over 1,500 PostgreSQL Servers Compromised in Fileless Cryptocurrency Mining Campaign
Apr 01, 2025Ravie LakshmananCryptojacking / Cloud Security Exposed PostgreSQL instances are the…
Apple Backports Critical Fixes for 3 Recent 0-Days Impacting Older iOS and macOS Devices
Apr 01, 2025Ravie LakshmananMobile Security / Vulnerability Apple on Monday backported fixes…
Hackers Exploit WordPress mu-Plugins to Inject Spam and Hijack Site Images
Mar 31, 2025Ravie LakshmananData Theft / Website Security Threat actors are using…
Russian Hackers Exploit CVE-2025-26633 via MSC EvilTwin to Deploy SilentPrism and DarkWisp
The threat actors behind the zero-day exploitation of a recently-patched security vulnerability…
Russia-Linked Gamaredon Uses Troop-Related Lures to Deploy Remcos RAT in Ukraine
Mar 31, 2025Ravie LakshmananThreat Intelligence / Malware Entities in Ukraine have been…
Nine-Year-Old npm Packages Hijacked to Exfiltrate API Keys via Obfuscated Scripts
Mar 28, 2025Ravie LakshmananCryptocurrency / Developer Security Cybersecurity researchers have discovered several…
PJobRAT Malware Campaign Targeted Taiwanese Users via Fake Chat Apps
Mar 28, 2025Ravie LakshmananSpyware / Malware An Android malware family previously observed…
RESURGE Malware Exploits Ivanti Flaw with Rootkit and Web Shell Features
Mar 30, 2025Ravie LakshmananVulnerability / Zero-Day The U.S. Cybersecurity and Infrastructure Security…