A new campaign dubbed ShadowRay 2.0 is weaponizing exposed Ray clusters to build a self‑propagating cryptomining botnet and more. Researchers at Oligo attribute the activity […]
Phishing kits have always been the low‑effort, high‑reward tool of choice for attackers. Tycoon 2FA proves they’ve reached a new level of industrialization: turnkey, automated, […]
Google released an out‑of‑band Chrome 142 update to patch a high‑severity V8 engine vulnerability (CVE‑2025‑13223) that’s been exploited in the wild. The issue is a […]
The Finger protocol — a relic from the early internet used to query user info on remote hosts — has quietly reappeared in modern malware […]
Fortinet has confirmed active exploitation of a critical vulnerability in FortiWeb web application firewall appliances that allows unauthenticated attackers to gain administrative access. Tracked as […]
If you feel like ransomware headlines are getting harder to keep up with, you’re not imagining it. The ecosystem has exploded into something almost unrecognizable […]
Six months after international law enforcement disrupted its infrastructure, DanaBot is back. Zscaler ThreatLabz has observed a new DanaBot variant (v669) re-emerging with rebuilt command-and-control […]
Microsoft’s November Patch Tuesday closes 63 newly disclosed vulnerabilities across Windows and related components, including a Windows Kernel privilege‑escalation zero‑day (CVE‑2025‑62215) that has seen active […]
An extensive phishing campaign targeting the hospitality industry is using highly convincing ClickFix-style pages to harvest credentials and deliver PureRAT (zgRAT) to hotel systems. Operators […]
Microsoft’s Defender research team has disclosed a new side‑channel attack, dubbed Whisper Leak, that can infer the topic of a user’s conversation with a streaming […]
Copyright © 2026 | WordPress Theme by MH Themes