ConnectWise patches new flaw allowing ScreenConnect hijacking
ConnectWise is warning ScreenConnect customers of a cryptographic signature verification vulnerability that could…
BeyondTrust Flaw Used for Web Shells, Backdoors, and Data Exfiltration
Ravie LakshmananFeb 20, 2026Vulnerability / Cyber Attack Threat actors have been observed…
Researchers Capture Lazarus APT’s Remote-Worker Scheme Live on Camera
Dec 02, 2025The Hacker NewsIdentity Theft / Threat Intelligence A joint investigation…
North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware
Nov 28, 2025Ravie LakshmananSupply Chain Attack / Malware The North Korean threat…
Hackers Exploiting Triofox Flaw to Install Remote Access Tools via Antivirus Feature
Nov 10, 2025Ravie LakshmananVulnerability / Incident Response Google's Mandiant Threat Defense on…
How ‘Browser-in-the-Middle’ Attacks Steal Sessions in Seconds
May 28, 2025The Hacker NewsBrowser Security / Credential Theft Would you expect…
Initial Access Brokers Target Brazil Execs via NF-e Spam and Legit RMM Trials
May 09, 2025Ravie LakshmananMalware / Email Security Cybersecurity researchers are warning of…
Phishing Campaigns Use Real-Time Checks to Validate Victim Emails Before Credential Theft
Apr 14, 2025Ravie LakshmananEmail Security / Cyber Attack Cybersecurity researchers are calling…
Russian Hackers Exploit CVE-2025-26633 via MSC EvilTwin to Deploy SilentPrism and DarkWisp
The threat actors behind the zero-day exploitation of a recently-patched security vulnerability…