Threat Actors with Fake Job Lures Attacking Job Seekers to Deploy Advanced Malware
In recent months, a sophisticated campaign has emerged in which state-linked threat actors are leveraging fake job offers to ensnare unsuspecting job seekers and...
U.S. Secret Service Dismantles 300 SIM Servers and 100,000 SIM Cards Disabling Cell Phone...
The U.S. Secret Service has dismantled a massive, sophisticated network of electronic devices in the New York tristate area, thwarting what it described as...
SolarWinds Web Help Desk Vulnerability Enables Unauthenticated RCE
SolarWinds has released an urgent security advisory for a critical vulnerability in its Web Help Desk software that could allow an unauthenticated attacker to...
Hackers Exploits IMDS Service to Gain Initial Access to a Cloud Environment
Threat actors were manipulating the Instance Metadata Service (IMDS), a core component designed to securely furnish compute instances with temporary credentials to infiltrate and...
GitHub Enhances NPM’s Security with Strict Authentication, Granular Tokens, and Trusted Publishing
Recent High-profile supply‐chain attacks have exposed critical weaknesses in package registry security, prompting GitHub to roll out a suite of defenses designed to harden...
EV Charging Provider Confirm Data Breach – Customers Personal Data Exposed
Digital Charging Solutions GmbH (DCS), a leading provider of white-label charging services for automotive OEMs and fleet operators, has confirmed a data breach affecting...
Hackers Hijacking IIS Servers Using Malicious BadIIS Module to Serve Malicious Content
A sophisticated cyber campaign, dubbed "Operation Rewrite," is actively hijacking Microsoft Internet Information Services (IIS) web servers to serve malicious content through a technique...
Hackers Abusing GitHub Notifications to Deliver Phishing Emails
In recent weeks, security researchers have uncovered an elaborate phishing campaign that leverages legitimate GitHub notification mechanisms to deliver malicious content.
Victims receive seemingly authentic...
Libraesva ESG Vulnerability Let Attackers Inject Malicious Commands
A critical security flaw in Libraesva ESG email security gateways has been identified and patched, allowing threat actors to execute arbitrary commands through specially...
.webp?w=324&resize=324,235&ssl=1 "European Airport Disruptions Caused by Sophisticated Ransomware Attack")
European Airport Disruptions Caused by Sophisticated Ransomware Attack
Over the weekend, a sophisticated ransomware attack compromised Collins Aerospace's Muse check-in and boarding systems, forcing key hubs including Heathrow, Brussels, and Berlin to...
.webp?w=100&resize=100,70&ssl=1 "Top 10 Best Autonomous Endpoint Management Tools in 2025")
