Russian APT Secret Blizzard uses ISP-level AitM attacks to deploy ApolloShadow malware on embassy devices in Moscow.

Threat actors abuse Proofpoint and Intermedia link wrapping to deliver phishing emails and steal Microsoft 365 credentials.

SentinelOne boosts enterprise cyber defense with AI-powered endpoint security, cutting response time and risk across ...

Critical WordPress flaw CVE-2025-5394 lets attackers take over sites using the "Alone" theme. 120K+ attempts blocked.

UNC2891 used a 4G Raspberry Pi and Linux rootkits to breach ATM networks, exposing flaws in banking infrastructure.

While SaaS-based SIEMs are marketed as a natural evolution, they often fall short of their on-prem predecessors in practice.

UNC4899 used job lures and cloud exploits to breach two firms, steal crypto, and embed malware in open source.

Cybersecurity researchers are calling attention to an ongoing campaign that distributes fake cryptocurrency trading apps to ...

Pillar Security unveils full-lifecycle AI platform securing assets from design to runtime—critical for safe AI deployment.

Cybersecurity researchers have disclosed now-patched critical security flaws in the firmware of Dahua smart cameras that, if ...

China-linked firms behind Silk Typhoon filed patents for cyber tools, revealing links to MSS and offensive hacking ops.

Google has announced that it's making a security feature called Device Bound Session Credentials (DBSC) in open beta to ...