China-linked cloud credential heist runs on typos and SMTP
Indicators and detection Despite the use of stealth, the researchers were able to connect the dots with the help of independent research by @Xlab_qax, who…
Latest Cybersecurity News — Page 401
View all →
EPA proposes $19 million information security boost to guard water systems from cyber threats, moves resilience to forefront
The U.S. Environmental Protection Agency is seeking FY 2027 budget authority to expand its Drinking Water Infrastructure Resilience Grant Program to include dedicated cybersecurity funding.…
Black & Veatch-Takepoint Research finds fragmented ownership slows secure-by-design adoption, pushing cyber risk
New data from Black & Veatch-Takepoint Research finds a persistent execution gap in the manner cybersecurity is integrated into industrial infrastructure, with 72% of organizations…
Different objectives, similar access paths
Across the Talos 2025 Year in Review, state-sponsored threat activity from China, Russia, North Korea, and Iran all had varying motivations, such as espionage, disruption, financial…
New: Use response actions to update Zscaler policies and block threats
The intel teams here at Red Canary and Zscaler have seen some notable social engineering attacks recently. Bad actors get an employee email address and…
5 Ways Zero Trust Maximizes Identity Security
Stolen credentials accounted for 22% of known initial access vectors in 2025. It’s the most common way for attackers to breach a network, and once…
New Mirax Android RAT Turns Infected Phones Into Residential Proxy Nodes
A newly discovered Android malware called Mirax has been quietly circulating in underground criminal forums since late 2025, posing a growing threat to mobile users…
Mirax Android RAT Hijacks Infected Phones as Residential Proxies
A new Android banking trojan called Mirax is rapidly gaining traction in the cybercrime ecosystem, combining powerful remote access features with residential proxy capabilities to turn victims’…
Booking.com Confirms Data Breach as Hackers Access Customer Details
Booking.com has begun contacting customers after confirming that a third party accessed parts of its reservation data. The company is describing the incident as a…
Over $1 Trillion Annually Lost To Online Fraud; AI Lends A Helping Hand
For the past few years, it’s escaped no one that levels of Internet and telephone fraud have skyrocketed. TIME reports that one in four adults worldwide lost…
DavMail 6.6.0 patches a regex flaw and advances its Microsoft Graph backend
Organizations that run DavMail to bridge standard mail clients to Microsoft Exchange or Office 365 received an update this week. Version 6.6.0 addresses a code-scanning…
Omnistealer uses the blockchain to steal everything it can
A new infostealer dubbed Omnistealer is turning the blockchain into a permanent malware hosting platform, which is bad news for both companies and everyday users.…