During a discussion of Palo Alto Networks’ results for the first quarter of 2026, CEO Nikesh Arora offered a forecast that immediately drew the attention of analysts. According to him, nations that are heavily...
Cl0p struck a blow against Oracle by exploiting a critical zero-day vulnerability in the E-Business Suite. Researchers report that attacks leveraging this flaw have been underway since July 2025, already compromising numerous major organizations...
Google has disclosed a years-long intelligence operation revealing that APT24, a China-linked threat group, had been deploying a previously unknown malicious tool called BadAudio. The campaign stretched across three years, gradually shifting toward more...
Two founders of the cryptocurrency service Samourai Wallet have received actual prison sentences for laundering more than $237 million in criminal proceeds. The charges stemmed from the platform’s deliberate facilitation of illicit actors, helping...
BitlockMove Lateral Movement via Bitlocker DCOM & COM Hijacking. This Proof of Concept (PoC) for Lateral Movement abuses the fact, that some COM Classes configured as INTERACTIVE USER will spawn a process in the context of...
Microsoft is introducing native Sysmon support in Windows, marking a significant shift in the security landscape. Capabilities that once required deploying a separate utility will now be integrated directly into the operating system, available...
A widespread infection of outdated ASUS routers has become the focal point of a new covert campaign that quietly unfolded over the past six months, compromising tens of thousands of devices across the globe....
In recent days it has become apparent that FortiWeb had been accumulating issues the manufacturer chose not to disclose in advance. After Fortinet acknowledged active exploitation of the critical vulnerability CVE-2025-64446 — which allows...
A recently disclosed vulnerability in the 7-Zip archiver is already being weaponized in real-world attacks, according to a statement from NHS England Digital. The notice underscores that the flaw affects a widely used archival...
A new wave of attacks targeting infrastructure built around modern machine-learning systems has been uncovered by the Oligo Security team. Researchers found that a group of threat actors has launched a large-scale operation, dubbed...