Browsing: Attacks

Qualys Identifies Critical Vulnerabilities that Enable DDoS, MITM Attacks

Kirsten DoyleFebruary 19, 20253 Mins Read

The Qualys Threat Research Unit (TRU) has uncovered two significant vulnerabilities in OpenSSH, a widely used open-source implementation of the…

2025 ZeroFox Forecast: Dark Web, Ransomware, Gen AI & Beyond

Dilki RathnayakeFebruary 18, 20256 Mins Read

Various threat actors and organizations are expected to undergo significant changes. Deep and Dark Web (DDW) marketplaces will likely be…

Microsoft Uncovers Enhanced macOS Malware Targeting Xcode Projects

Kirsten DoyleFebruary 18, 20253 Mins Read

Microsoft Threat Intelligence has uncovered a new variant of XCSSET, a sophisticated modular macOS malware that targets users by infecting…

Massive Data Exposure at Mars Hydro Highlights IoT Security Risks

Kirsten DoyleFebruary 17, 20254 Mins Read

Jeremiah Fowler, an experienced cybersecurity researcher at vpnMentor and co-founder of Security Discovery, has uncovered a massive data exposure involving…

eSentire Uncovers EarthKapre/RedCurl Attack Targeting Law Firms

Kirsten DoyleFebruary 17, 20252 Mins Read

eSentire’s Threat Response Unit (TRU) has uncovered a new cyber espionage campaign leveraging a legitimate Adobe executable to sideload the…

Espionage Tools Associated with China Used in Ransomware Attacks

Kirsten DoyleFebruary 14, 20254 Mins Read

Espionage actors linked to China may be diversifying their operations, as new evidence points to the use of espionage tools…

From Sweethearts to Swindlers: Valentine’s Day Fraud Surges

Kirsten DoyleFebruary 14, 20256 Mins Read

As people celebrate Valentine’s Day today, malicious actors are jumping on the love bandwagon in an opportunity to exploit heightened…

Russia-Linked Seashell Blizzard Intensifies Cyber Operations Against Critical Sectors

Kirsten DoyleFebruary 13, 20254 Mins Read

The Russia-linked threat actor known as Seashell Blizzard has assigned one of its subgroups to gain initial access to internet-facing…

CISA, FBI Warn of Threats Exploiting Buffer Overflow Vulnerabilities

Kirsten DoyleFebruary 13, 20252 Mins Read

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have issued a new Secure by…

Inside the Söze Syndicate: MFA Flaws, and the Battle for SMB Security

Dilki RathnayakeFebruary 12, 20258 Mins Read

Small and medium-sized businesses are highly vulnerable to Business Email Compromise (BEC) attacks. Threat actors are evolving, exploiting human error…