Aggregator

Submit #791822 / VDB-356530

Submit #791821 / VDB-356529

Bitcoin Depot filed a notice with the Securities Exchange Commission (SEC) explaining that a threat actor “gained access to certain systems and obtained control of credentials associated with the company’s digital asset settlement accounts.”

​INAIR 想让你的数字空间，随你所在，随时展开。

Submit #791819 / VDB-236325

Submit #791758 / VDB-356528

Submit #791755 / VDB-356527

Submit #791745 / VDB-356526

Submit #791734 / VDB-356525

Submit #791695 / VDB-352080

Submit #791693 / VDB-356524

A newly identified malware called LucidRook has been spotted targeting organizations across Taiwan, hiding inside what appears to be legitimate security software. The attackers went out of their way to make it look convincingly real, forging the icon and application name of a well-known cybersecurity product to trick victims into running it. The campaign focuses […]

The post Hackers Use Fake Security Software to Deliver LucidRook Malware in Taiwan Attacks appeared first on Cyber Security News.

As traditional fraud markers become obsolete, we must treat digital identity as critical infrastructure and adopt a layered, real-time defense to neutralize sophisticated crime rings.

The post Don’t just fight fraud, hunt it appeared first on CyberScoop.

OPSWAT has announced OPSWAT Predictive Alin AI, its first proprietary AI-based threat detection engine for the MetaDefender Platform. This AI-based innovation introduces a new category of capability within the MetaDefender Platform, a high-confidence predictive layer that works alongside existing detection and prevention engines to assess malicious intent before execution, driving greater efficiency across the platform. This enables organizations to act immediately, while minimizing the operational impacts of false positives. “At OPSWAT, we’ve always believed that … More →

The post OPSWAT adds predictive AI engine to MetaDefender for pre-execution threat detection appeared first on Help Net Security.

Конец анонимного флирта…

macOS Malware notnullOSX targets crypto wallets over $10K, using fake apps, Terminal tricks, and backdoors to steal funds and sensitive data.

Germany’s economy is a precision machine: finance fuels it, manufacturing builds it, telecom connects it, IT optimizes it, and healthcare sustains it. The country sits at the crossroads of industrial power and digital transformation, making it irresistibly attractive to attackers. In this article, we explore real-world attacks targeting five critical German industries, analyzed by ANY.RUN’s analysts using Interactive […]

The post How Phishing Is Targeting Germany’s Economy: Active Threats from Finance to Manufacturing appeared first on ANY.RUN's Cybersecurity Blog.

Unknown attackers have exploited a zero-day Adobe Acrobat Reader vulnerability since November 2025 and possibly even earlier, security researcher Haifei Li has discovered. PDF files carry the exploit Haifei Li is one of the creators of EXPMON, a sandbox-based cybersecurity system for detecting advanced file-based exploits. It does so by analyzing suspicious files submitted through its public web interface or API. “Just few weeks ago, on March 26, someone submitted a PDF sample to EXPMON. … More →

The post Acrobat Reader zero-day exploited in the wild for many months appeared first on Help Net Security.

A vulnerability described as critical has been identified in WooCommerce Memberships for Multivendor Marketplace Plugin up to 2.10.7 on WordPress. The affected element is an unknown function. Such manipulation leads to authorization bypass. This vulnerability is listed as CVE-2023-2276. The attack may be performed from remote. There is no available exploit.