Many networking devices are still vulnerable to pixie dust attack
Despite having been discovered and reported in 2014, the vulnerability that allows pixie dust attacks still impacts consumer and SOHO networking equipment around the world,…
Latest Cybersecurity News — Page 1680
View all →
Microsoft to invest $30bn in expanding its operations and AI infrastructure footprint in UK
Microsoft plans to invest $30bn between now and 2028 in building out its artificial intelligence (AI) infrastructure and operations in the UK. The software giant…
Virtual Event Today: Attack Surface Management Summit
SecurityWeek’s Attack Surface Management Virtual Summit is now LIVE and runs today from 11AM – 4PM ET. Join the online event where cybersecurity leaders and practitioners…
Microsoft and Cloudflare teamed up to dismantle the RaccoonO365 phishing service
Microsoft and Cloudflare teamed up to dismantle the RaccoonO365 phishing service Pierluigi Paganini September 17, 2025 Microsoft and Cloudflare disrupted the RaccoonO365 phishing service, used…
Office 2016 and Office 2019 reach end of support next month
Microsoft reminded customers again this week that Office 2016 and Office 2019 will reach the end of extended support in less than 30 days, on…
Python Based XillenStealer Attacking Windows Users to Steal Sensitive Data
In recent weeks, cybersecurity researchers have observed the emergence of XillenStealer, a Python-based information stealer publicly hosted on GitHub and rapidly adopted by threat actors.…
MuddyWater Deploys Custom Multi-Stage Malware Hidden Behind Cloudflare
Since early 2025, cybersecurity analysts have witnessed a marked evolution in the tactics and tooling of MuddyWater, the Iranian state-sponsored Advanced Persistent Threat (APT) group.…
New Shai-hulud Worm Infecting npm Packages With Millions of Downloads
ReversingLabs discovers “Shai-hulud,” a self-replicating computer worm on the npm open-source registry. Learn how the malware steals developer secrets, exposes private code, and spreads through…
224 malicious apps removed from the Google Play Store after ad fraud campaign discovered
Researchers have discovered a large ad fraud campaign on Google Play Store. The Satori Threat Intelligence and Research team found 224 malicious apps which were…
Chinese TA415 Uses VS Code Remote Tunnels to Spy on U.S. Economic Policy Experts
Sep 17, 2025Ravie LakshmananCyber Espionage / Malware A China-aligned threat actor known as TA415 has been attributed to spear-phishing campaigns targeting the U.S. government, think…
Irregular Raises $80 Million for AI Security Testing Lab
Israeli company Irregular, previously known as Pattern Labs, on Wednesday announced raising $80 million for its AI security lab. Founded by Dan Lahav (CEO) and…
Critical WatchGuard Vulnerability Allows Unauthenticated Attacker to Execute Arbitrary Code
A critical vulnerability has been discovered in WatchGuard’s Firebox firewalls, which could allow a remote, unauthenticated attacker to execute arbitrary code on affected devices. The…