Threats

Organizations are facing an unbelievable surge in cloud-based security threats, with attacks nearly five times more frequent at the end of 2024 compared to the beginning of the year. Most concerning is the targeted attack...

The largest US internet provider, WideOpenWest (WOW!), is allegedly compromised by Arkana Security, a recently discovered ransomware group. The attack, which security researchers trace to an infostealer infection from September 2024, has reportedly compromised over...

Cybersecurity researchers have uncovered a sophisticated new malware strain targeting macOS systems, dubbed "CoffeeLoader," which employs advanced techniques to bypass endpoint security solutions and deliver Rhadamanthys shellcode payloads. The malware represents a significant evolution in...

A sophisticated macOS malware loader platform known as "ReaderUpdate" has significantly evolved its capabilities, with researchers identifying new variants written in Nim and Rust programming languages. Despite being active since at least 2020, this threat...

Online marketplaces have become increasingly popular in developing countries since 2015, providing platforms for trading various goods from used electronics to brand-new items. This digitalization trend, however, has created fertile ground for sophisticated scam operations. Among...

Credential stuffing has emerged as one of the most pervasive and effective attack vectors in today's cybersecurity landscape. This technique, which leverages stolen username and password combinations across multiple platforms, has been significantly enhanced through...

A sophisticated technique was recently detected by researchers where attackers abuse Component Object Model (COM) objects to execute fileless malware for lateral movement across networks. This technique, detailed in research from March 2025, leverages legitimate...

Dark web carding marketplace B1ack's Stash has announced the release of 4 million stolen credit card details at no cost to cybercriminals. This massive data leak, publicized on February 19, 2025, represents one of the...

A sophisticated new malware strain dubbed SectopRAT has emerged, leveraging Cloudflare's Turnstile challenge system as part of its attack methodology. This Remote Access Trojan specifically targets Windows users through a multi-staged infection process that begins...

A sophisticated phishing campaign dubbed the "Clickflix Technique" has emerged targeting YouTube content creators through seemingly legitimate brand collaboration requests. This new attack vector exploits creators' eagerness to secure sponsorship deals by disguising malware payloads...