Latest Cybersecurity News

Stay informed with real-time threat intelligence, vulnerability disclosures, and expert analysis from the cybersecurity community.

All Malware & Threats463 Vulnerabilities239 Data Breaches20 Ransomware0 APT & Threat Actors0 Cloud Security0 MENA Cybersecurity0 Compliance & Frameworks0 Tools & Tutorials0 Industry News1114

FBI warns of phishing attacks impersonating US city, county officials

BleepingComputer

Malware & Threats

FBI warns of phishing attacks impersonating US city, county officials

The Federal Bureau of Investigation (FBI) warns that criminals are impersonating U.S. officials in phishing attacks targeting businesses and individuals who request city and county planning and zoning permits.

BleepingComputerMar 9, 20263m9

Why Password Audits Miss the Accounts Attackers Actually Want

BleepingComputer

Malware & Threats

Why Password Audits Miss the Accounts Attackers Actually Want

Password audits often focus on complexity rules but miss the accounts attackers actually target. Specops Software explains how breached passwords, orphaned users, and service accounts can leave organizations exposed.

BleepingComputerMar 9, 20265m9

Microsoft still working to fix Windows Explorer white flashes

BleepingComputer

Malware & Threats

Microsoft still working to fix Windows Explorer white flashes

Microsoft has confirmed that it's still working to fully address a known issue that causes bright white flashes when opening the File Explorer on some Windows 11 systems.

BleepingComputerMar 9, 20262m9

EU court adviser says banks must immediately refund phishing victims

BleepingComputer

Malware & Threats

EU court adviser says banks must immediately refund phishing victims

Athanasios Rantos, the Advocate General of the Court of Justice of the EU (CJEU), has issued a formal opinion suggesting that banks must immediately refund account holders affected by unauthorized transactions, even when it's their fault.

BleepingComputerMar 8, 20263m9

Hackers abuse .arpa DNS and ipv6 to evade phishing defenses

BleepingComputer

Malware & Threats

Hackers abuse .arpa DNS and ipv6 to evade phishing defenses

Threat actors are abusing the special-use ".arpa" domain and IPv6 reverse DNS in phishing campaigns that more easily evade domain reputation checks and email security gateways.

BleepingComputerMar 8, 20266m9

Termite ransomware breaches linked to ClickFix CastleRAT attacks

BleepingComputer

Malware & Threats

Termite ransomware breaches linked to ClickFix CastleRAT attacks

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.

BleepingComputerMar 7, 20263m9

Microsoft: Hackers abusing AI at every stage of cyberattacks

BleepingComputer

Malware & Threats

Microsoft: Hackers abusing AI at every stage of cyberattacks

Microsoft says threat actors are increasingly using artificial intelligence in their operations to accelerate attacks, scale malicious activity, and lower technical barriers across all aspects of a cyberattack.

BleepingComputerMar 7, 20264m9

Malware & Threats

Cognizant TriZetto breach exposes health data of 3.4 million patients

BleepingComputer

Malware & Threats

Cognizant TriZetto breach exposes health data of 3.4 million patients

TriZetto Provider Solutions, a healthcare IT company that develops software and services used by health insurers and healthcare providers, has suffered a data breach that exposed the sensitive information of over 3.4 million people. [...]

BleepingComputerMar 6, 20261m9

CISA warns feds to patch iOS flaws exploited in crypto-theft attacks

BleepingComputer

Malware & Threats

CISA warns feds to patch iOS flaws exploited in crypto-theft attacks

CISA ordered U.S. federal agencies to patch three iOS security flaws targeted in cyberespionage and crypto-theft attacks using the Coruna exploit kit.

BleepingComputerMar 6, 20262m9

Student Loan Breach Exposes 2.5M Records

Threatpost

Malware & Threats

Student Loan Breach Exposes 2.5M Records

2.5 million people were affected, in a breach that could spell more trouble down the line.

ThreatpostAug 31, 20223m9

Watering Hole Attacks Push ScanBox Keylogger

Threatpost

Malware & Threats

Watering Hole Attacks Push ScanBox Keylogger

Researchers uncover a watering hole attack likely carried out by APT TA423, which attempts to plant the ScanBox JavaScript-based reconnaissance tool.

ThreatpostAug 30, 20225m9

Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms

Threatpost

Malware & Threats

Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms

Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system.

ThreatpostAug 29, 20224m9