“Follow me” to this fake crypto exchange to claim $500
A type of crypto scam that we reported about in 2024 has ported over to a new platform and changed […]
“Follow me” to this fake crypto exchange to claim $500 Read More »
Hertz data breach caused by CL0P ransomware attack on vendor
The Hertz Corporation, on behalf of Hertz, Dollar, and Thrifty brands, is sending breach notifications to customers who may have
Hertz data breach caused by CL0P ransomware attack on vendor Read More »
Chinese Hackers Target Linux Systems Using SNOWLIGHT Malware and VShell Tool
The China-linked threat actor known as UNC5174 has been attributed to a new campaign that leverages a variant of a
Chinese Hackers Target Linux Systems Using SNOWLIGHT Malware and VShell Tool Read More »
Critical Apache Roller Vulnerability (CVSS 10.0) Enables Unauthorized Session Persistence
A critical security vulnerability has been disclosed in the Apache Roller open-source, Java-based blogging server software that could allow malicious
Malicious PyPI Package Targets MEXC Trading API to Steal Credentials and Redirect Orders
Cybersecurity researchers have disclosed a malicious package uploaded to the Python Package Index (PyPI) repository that’s designed to reroute trading
Malicious PyPI Package Targets MEXC Trading API to Steal Credentials and Redirect Orders Read More »
Majority of Browser Extensions Can Access Sensitive Enterprise Data, New Report Finds
Everybody knows browser extensions are embedded into nearly every user’s daily workflow, from spell checkers to GenAI tools. What most
Majority of Browser Extensions Can Access Sensitive Enterprise Data, New Report Finds Read More »
Year in Review: The biggest trends in ransomware
This week, our Year in Review spotlight is on ransomware—where low-profile tactics led to high-impact consequences. Ransomware operators often prioritized stealth over complexity
Year in Review: The biggest trends in ransomware Read More »
Crypto Developers Targeted by Python Malware Disguised as Coding Challenges
The North Korea-linked threat actor assessed to be behind the massive Bybit hack in February 2025 has been linked to
Crypto Developers Targeted by Python Malware Disguised as Coding Challenges Read More »
Gladinet’s Triofox and CentreStack Under Active Exploitation via Critical RCE Vulnerability
A recently disclosed security flaw in Gladinet CentreStack also impacts its Triofox remote access and collaboration solution, according to Huntress,