Scattered Spider targets airlines with advanced social engineering and MFA bypass tactics. Industry must reassess identity ...

China-linked hackers use compromised SOHO devices in espionage campaign, targeting Taiwan, the U.S., and Southeast Asia.

A new campaign has been observed leveraging fake websites advertising popular software such as WPS Office, Sogou, and ...

Meta's new AI feature requests photo uploads from users for personalized suggestions, sparking privacy concerns.

ClickOnce is offered by Microsoft as a way to install and update Windows-based applications with minimal user interaction. It ...

Guest users in Entra ID may exploit billing roles to create and control subscriptions, escalating access undetected.

Iranian hackers linked to APT35 target Israeli professionals using AI-driven phishing, fake Gmail pages, and 2FA bypass.

Threat intelligence firm GreyNoise is warning of a "notable surge" in scanning activity targeting Progress MOVEit Transfer systems starting May 27, 2025—suggesting that attackers may be preparing for ...

The disclosure comes as Citrix patched a critical-rated security flaw in NetScaler (CVE-2025-5777, CVSS score: 9.3) that ...

Contagious Interview, first publicly documented by Palo Alto Networks Unit 42 in late 2023, is an ongoing campaign undertaken ...

SonicWall and ConnectWise security breaches enable Trojan and remote access malware targeting VPN users and AI tool seekers.

Hackers target Microsoft Exchange servers worldwide, injecting keyloggers to steal credentials from victims in 26 countries.