Why Password Audits Miss the Accounts Attackers Actually Want
Password audits are a standard part of most security programs. They help organizations demonstrate compliance, reduce obvious risk, and confirm that basic controls are in…
Latest Cybersecurity News — Page 133
View all →
The single-packet attack: making remote race-conditions ‘local’
The single-packet attack is a new technique for triggering web race conditions. It works by completing multiple HTTP/2 requests with a single TCP packet, which…
Iran-Linked Hackers Target U.S. Critical Infrastructure Amid Rising Cyber Threats
Iran-linked threat actors are escalating cyber operations against U.S. and allied networks, with Seedworm recently deploying new backdoors against critical infrastructure and high-value organizations amid…
Iran’s MuddyWater Hackers Target US Firms with New Dindoor Backdoor
Cyber security researchers at Threat Hunter Team say a long-running Iranian cyber espionage group has breached several U.S. organizations in a campaign that began earlier…
Quiz sites trick users into enabling unwanted browser notifications
Our support team flagged a number of customers who suspected their device might be infected with malware, but Malwarebytes scans came up empty. When the…
Malicious Go Crypto Module Steals Passwords, Deploys Rekoobe Backdoor
Ravie LakshmananFeb 27, 2026Malware / Linux Security Cybersecurity researchers have disclosed details of a malicious Go module that’s designed to harvest passwords, create persistent access…
Interview: Nick Pearson, CIO, Ricoh Europe
Nick Pearson, CIO at Ricoh Europe, describes his job as energising. The company’s shift in business model presents challenges and significant opportunities for him to…
Chinese local governments offer OpenClaw project subsidies as security questions linger
Some local governments in China have rushed to support the adoption of OpenClaw, the artificial intelligence agent sweeping the country, even as warnings about privacy…
US National Cyber Strategy calls for government–industry coordination to boost offensive and defensive capabilities
The U.S. published ‘President Trump’s Cyber Strategy for America,’ outlining the administration’s priorities to ensure the country remains unrivaled in cyberspace. The strategy calls for…
Likely fake ransomware operator 0APT causes panic — Our analysis
Introduction A new threat actor has launched what appears to be a fake ransomware-as-a-service (RaaS) operation called 0APT. Over the last week, 0APT published a…
Automate your Detection Rule Migration — Elastic Security Labs
Migrating to a new SIEM is often viewed as a daunting task. The sheer volume of legacy detection rules, dashboards, and custom configurations can keep…
ClipXDaemon Emerges as C2-Less Linux Clipboard Hijacker, Targeting Crypto Wallets in X11 Sessions
A newly discovered Linux malware named ClipXDaemon has emerged as a direct financial threat to cryptocurrency users in X11-based desktop environments. Unlike conventional malware that…