Microsoft Revokes 200+ Fake Certificates Used in Teams Malware Attack
Microsoft has revoked over 200 fraudulent code-signing certificates used in a ransomware campaign involving fake Teams installers by threat group Vanilla Tempest
Information Security Magazine
Teen Tied to Russian Hackers in Dutch Cyber Espionage Probe
1 month ago
Dutch prosecutors suspect three teens of aiding a foreign power, with one allegedly linked to a Russian-affiliated hacker group
North Korean Hackers Use EtherHiding to Steal Crypto
1 month ago
Google reveals North Korean hackers are using EtherHiding, a blockchain-based technique, to deliver malware and steal cryptocurrency
Prosper Data Breach Exposes 17 Million Customers' Personal Info
1 month ago
The US lending platform said early investigations found no evidence of unauthorized account access or fund theft
Security Teams Must Deploy Anti-Infostealer Defenses Now
1 month ago
At ISACA Europe 2025, cybersecurity consultant Tony Gee shared some technical measures security teams could implement to fight against the infostealer scourge
New Rootkit Campaign Exploits Cisco SNMP Flaw to Gain Persistence
1 month ago
Trend Micro have reported a campaign exploiting a flaw in Cisco SNMP to install Linux rootkits on devices
AI Attacks Surge as Microsoft Process 100 Trillion Signals Daily
1 month ago
Microsoft systems analyze over 100 trillion daily signals, suggesting dramatically increasing AI-driven cyber-threats
LastPass Warns Customers It Has Not Been Hacked Amid Phishing Email Scam
1 month ago
LastPass warns customers it has not been breached, after phishing emails falsely claim a hack and urge users to update their desktop app
Over 23 Million Victims Hit by Data Breaches in Q3
1 month ago
Data from the Identity Theft Resource Center reveals 23 million individuals victimized by breaches in Q3 2025
F5 Reveals Nation State Breach and Urges Immediate Patching
1 month ago
F5 has admitted a nation state actor has stolen source code and information on undisclosed vulnerabilities
Flaw in Slider Revolution Plugin Exposed 4m WordPress Sites
1 month ago
A flaw in the Slider Revolution plugin has exposed millions of WordPress sites to unauthorized file access
Whisper 2FA Behind One Million Phishing Attempts Since July
1 month ago
Whisper 2FA is now one of the most active PhaaS tools alongside Tycoon and EvilProxy, responsible for one million attacks since July 2025
Last Windows 10 Patch Tuesday Features Six Zero-Days
1 month ago
Microsoft has fixed over 170 CVEs in October’s Patch Tuesday, including six zero-day vulnerabilities
Capita Fined £14m After 2023 Breach that Hit 6.6 Million People
1 month ago
Outsourcing giant Capita has been fined £14m by the ICO after a major data breach in 2023
UK, US Sanction Southeast Asia-Based Online Scam Network
1 month ago
Investigations found that the network operates scam centers in Cambodia, Myanmar and across Southeast Asia
Legacy Windows Protocols Still Expose Networks to Credential Theft
1 month ago
Legacy Windows protocols are still exposing organizations to credential theft, Resecurity found
Hacker Group TA585 Emerges With Advanced Attack Infrastructure
1 month ago
A newly identified cybercrime group TA585 is running an advanced cyber operation distributing MonsterV2 malware
Senior Execs Falling Short on Cyber-Attack Preparedness, NCSC Warns
1 month ago
In a joint warning letter, UK ministers urged FTSE 350 CEOs to bolster cyber defenses
Chinese Hackers Use Trusted ArcGIS App For Year-Long Persistence
1 month ago
ReliaQuest report reveals Flax Typhoon attackers maintained year-long access to an ArcGIS system
UK Firms Lose Average of £2.9m to AI Risk
1 month ago
A new EY report claims unmanaged AI risk is causing millions of pounds’ worth of losses for UK organizations
Checked
10 hours 4 minutes ago