Infosec News

Novaya Gazeta Europe's website was knocked offline at times over several days by floods of junk traffic, making it the latest Russian independent media organization to face such disruption.

Elastic Security Labs discusses detection and mitigation strategies for vulnerabilities in the CUPS printing system, which allow unauthenticated attackers to exploit the system via IPP and mDNS, resulting in remote code execution (RCE) on UNIX-based systems such as Linux, macOS, BSDs, ChromeOS, and ...

Threat actors are constantly working on different ways to target users across the globe. Spyware has the capability to quietly […]

The Veeam vulnerability CVE-2024-40711 allows remote code execution. Ransomware gangs exploit this flaw—swift patching and security measures are essential.

Protect against zero-day attacks with NDR's proactive AI-driven detection. Learn how traditional solutions fall short

Two Sudanese nationals were indicted on Wednesday in the U.S. for their role in operating the Anonymous Sudan cybercriminal group, which launched hundreds of attacks that knocked critical websites offline.

Since late 2022, Earth Baku has broadened its scope from the Indo-Pacific region to Europe, the Middle East, and Africa. Their latest operations demonstrate sophisticated techniques, such as exploiting public-facing applications like IIS servers for initial access and deploying the Godzilla webshell...

The Unit 42 Threat Frontier report discusses GenAI's impact on cybersecurity, emphasizing the need for AI-specific defenses and proactive security. The Unit 42 Threat Frontier report discusses GenAI's impact on cybersecurity, emphasizing the need for AI-specific defenses and proactive security.

Trustwave's Threat Intelligence team has discovered a new malware dubbed Pronsis Loader, with its earliest known variant dating back to November 2023.

The thieves modify transaction messages to initiate unauthorized withdrawals, even when there are insufficient funds.

Intel is in hot water in China.

Attackers leverage QR codes in PDF email attachments to spearphish corporate credentials from mobile devices

Have I Been Pwned allows you to search across multiple data breaches to see if your email address or phone number has been compromised.

Cybercriminals abuse EDRSilencer to disable endpoint detection tools, making malicious activity harder to detect.

Forty-three governments worldwide have attacked or killed citizens for their online speech and 25 cut off internet access during election periods, metrics which contributed to an overall decline in internet freedoms in 2024, a new report says.

With the US election on the horizon, it’s a good time to explore the concept of social media weaponization and its use in manipulating public opinion.

The REF6138 campaign involved cryptomining, DDoS attacks, and potential money laundering via gambling APIs, highlighting the attackers' use of evolving malware and stealthy communication channels.

TrickMo Android malware now steals unlock patterns, PINs, and more, posing a severe threat to mobile banking.

The 2024 Trustwave Risk Radar Report: Financial Services Sector underscores the escalating threat landscape facing the industry.

Kaspersky experts have discovered a new version of the APT Awaken Likho RAT Trojan, which uses AutoIt scripts and the MeshCentral system to target Russian organizations.

Microsoft has observed the threat actor tracked as Storm-0501 launching a multi-staged attack where they compromised hybrid cloud environments and performed lateral movement from on-premises to cloud environment, leading to data exfiltration, credential theft, tampering, persistent backdoor access, ...

Discover how North Korean attackers, posing as recruiters, used an updated downloader and backdoor in a campaign targeting tech job seekers. Discover how North Korean attackers, posing as recruiters, used an updated downloader and backdoor in a campaign targeting tech job seekers.