General cybersecurity industry news, market trends, and analysis
CISA adds Wing FTP CVE-2025-47813 to KEV after active exploitation, exposing server paths and aiding attacks; patch by March 30, 2026.
Researchers uncovered an extensive cyberespionage campaign that used novel backdoors and familiar evasion techniques to maintain persistent access to regional targets.
Researchers have identified dozens of malicious GlassWorm extensions that come with new evasion techniques.
GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to supply-chain compromise.
Drivers in the Russian city of Perm have been enjoying an unexpected bonus this week: free parking.
Broadcom, Bechtel, Estée Lauder, and Abbott Technologies are the only major companies that have yet to issue a public statement.
The attackers used a DKIM-signed phishing email, trusted redirect infrastructure, compromised servers, and Cloudflare-protected phishing pages.
Catch up on the latest cyber threats, attack trends, security research, botnets, phishing, and critical vulnerabilities.
A social engineering campaign impersonating PayPal and Amazon uses customer support interactions to acquire sensitive info.
The state-sponsored hackers deployed custom tools and stayed dormant in the compromised environments for months.
Storm-2561 is distributing fake VPN clients through SEO poisoning, deploying trojans, and stealing login information.
Agentic AI automates security validation using unified data fabric and exposure intelligence, enabling faster threat detection and remediation.
