A sophisticated social engineering campaign by the EncryptHub threat group that combines impersonation tactics with technical exploitation to compromise corporate...
Read more →
A sophisticated phishing campaign targeting the maintainer of eslint-config-prettier, a widely-used npm package with over 3.5 billion downloads, resulted in...
Read more →
CloudSEK uncovered a Pakistan-based family cybercrime network that spread infostealers via pirated software, netting $4.67M and millions of victims. The...
Read more →
Aug 16, 2025Ravie LakshmananAndroid / Malware Cybersecurity researchers have detailed the inner workings of an Android banking trojan called ERMAC...
Read more →
WIRED copublished an investigation this week with The Markup and CalMatters showing that dozens of data brokers have been hiding...
Read more →
Cisco Talos researchers have uncovered a sophisticated Chinese-speaking advanced persistent threat (APT) group, designated UAT-7237, that has been actively targeting...
Read more →
EncryptHub abuses Brave Support in new campaign exploiting MSC EvilTwin flaw Pierluigi Paganini August 16, 2025 EncryptHub actor exploits Windows...
Read more →
Taiwan Web Infrastructure targeted by APT UAT-7237 with custom toolset Pierluigi Paganini August 16, 2025 APT group UAT-7237, linked to...
Read more →
Cybersecurity researchers from watchTowr Labs have published a comprehensive technical analysis of a critical pre-authentication command injection vulnerability affecting Fortinet...
Read more →
Aug 16, 2025Ravie LakshmananMalware / Vulnerability The threat actor known as EncryptHub is continuing to exploit a now-patched security flaw...
Read more →Here’s a different way to think about the change coming to the workforce and economy from AI. Imagine everyone in...
Read more →
Palo Alto Networks has published an extensive malware analysis tutorial detailing the dissection of a sophisticated .NET-based threat that delivers...
Read more →