Mandiant analyzed 138 vulnerabilities that were disclosed in 2023 and that we tracked as exploited in the wild.

Analysis of a newly discovered Linux based variant of the DPRK attributed FASTCash malware along with background information on payment switches used in financial networks.

None

The Department of Defense wants technology so it can fabricate online personas that are indistinguishable from real people.

Microsoft Threat Intelligence uncovered a macOS vulnerability that could potentially allow an attacker to bypass the operating system’s Transparency, Consent, and Control (TCC) technology and gain unauthorized access to a user’s protected data. The vulnerability…

Akamai researchers explore a new vulnerability that can be exploited to lead to elevation of privilege attacks against Windows machines.

We finished pulling seven cloud apps, including HEY, out of AWS and onto our own hardware last summer. But it took until the end of that year for all the long-term contract commitments to end, so 2024 has been the first clean year of savings, and we've been…

Software supply chain attack targets open-source developers in npm via malicious packages that steal Ethereum private keys, gain SSH persistence.

Qrator Labs представляет статистику DDoS-атак, BGP-инцидентов и бот-активности в 3 квартале 2024 года.

An unknown threat actor is developing ransomware to lock files and steal data on macOS, and it's not LockBit.

Hello Kubernetes Community, A security issue was discovered in Kubernetes where an unauthorized user may be able to ssh to a node VM which uses a VM image built with the Kubernetes Image Builder project (https://github.com/kubernetes-sigs/image-builder).…

How much longer is this transition to IPv6 going to take and does it even matter?

qBittorrent has addressed a remote code execution flaw caused by the failure to validate SSL/TLS certificates in the application's DownloadManager, a component that manages downloads throughout the app.

Since October 22, 2024, Microsoft Threat Intelligence has observed Russian threat actor Midnight Blizzard sending a series of highly targeted spear-phishing emails to individuals in government, academia, defense, non-governmental organizations, and other…

Threat Group: Interlock
Threat Type: Ransomware
Exploited Vulnerabilities: Network vulnerabilities; FreeBSD and VMware ESXi environments
Malware Used: Interlock ransomware variants for FreeBSD and Windows
Threat Score: High (8.0/10) — due to cross-platform…

EMERALDWHALE is an operation targeting exposed Git configurations, resulting in more than 15,000 cloud service credentials stolen.

Мошенники используют большие языковые модели (LLM) для создания фишинговых страниц и оставляют в текстах и тегах артефакты, такие как фраза As an AI language model.