ERMAC was first documented by ThreatFabric in September 2021, detailing its ability to conduct overlay attacks against ...

EncryptHub exploits CVE-2025-26633 with social engineering and rogue MSC files, delivering Fickle Stealer malware.

Because once an agent becomes adaptive and semi-autonomous, privacy isn't just about who has access to the data; it's about ...

U.S. sanctions Garantex, successor Grinex, after $100M illicit crypto flow fuels ransomware and sanctions evasion.

UAT-7237 exploits unpatched Taiwan servers using SoundBill, Cobalt Strike, and SoftEther VPN for persistent control.

The vulnerability, assigned the CVE identifier CVE-2025-20265 (CVSS score: 10.0), affects the RADIUS subsystem implementation ...

The bespoke Cobalt Strike Beacon loader has been codenamed ReadNimeLoader. CrossC2, an unofficial Beacon and builder, is ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws impacting N-able ...

EASM and DRP tools automate asset discovery and threat monitoring, reducing breach risk from hidden digital exposures.

Blocking unknown apps and enforcing MFA reduce ransomware risk and credential theft across enterprise networks.

MadeYouReset exploit bypasses HTTP/2 Rapid Reset mitigations, affecting major servers and enabling large-scale DoS attacks.

"An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in ...