The Italian company Fulgar has suffered a large-scale ransomware attack. Responsibility for the incident was claimed by the RansomHouse group, which posted a message on its darknet site announcing the company’s compromise and threatening...
In its November Patch Tuesday release, Microsoft addressed 63 vulnerabilities, including a critical zero-day flaw that had already been exploited in the wild. This month’s patches span a broad spectrum of Windows components and...
OWASP has updated its list of the most critical risks for web applications, introducing two new categories and revising the structure of its ranking. The organization has published a draft of the 2025 edition,...
A man suspected of inciting attacks against German politicians and public officials has been arrested on charges of terrorism and financing acts of physical violence. According to Germany’s Federal Prosecutor’s Office, the suspect is...
At the very height of Japan’s corporate party season, as the country prepares for its annual wave of year-end bonenkai celebrations, Asahi has found itself in crisis: more than a month after a powerful...
Artificial intelligence, once regarded merely as an auxiliary tool in the field of cybersecurity, is now moving to the forefront and becoming the very engine of digital threats. A new Google Cloud forecast for...
Researchers have uncovered a link between the well-known banking trojan Coyote and the newly identified malware Maverick, which had been propagating through WhatsApp. Analysts highlight striking overlaps in the use of the .NET platform,...
Synology has patched a zero-day vulnerability in its BeeStation devices, demonstrated at the recent Pwn2Own competition. The flaw, assigned CVE-2025-12686, falls under the category of “buffer copy without input-size validation,” enabling an attacker to...
Mandiant researchers have uncovered active exploitation of a zero-day vulnerability in the Gladinet Triofox remote access and file-sharing platform. CVE-2025-12480 allowed attackers to bypass authorization and reach configuration pages of the web interface, through...
Spyware applications secretly installed on Android devices continue to pose a stealthy and insidious threat to victims of domestic abuse, intimate partner surveillance, and digital coercion. Despite the presence of built-in protection mechanisms and...
A North Korean–linked hacking campaign attributed to the KONNI cluster has executed a string of targeted attacks against Android devices in South Korea, uniquely exploiting the legitimate Google Find My Device service to remotely...
The APT-C-60 group, previously linked to targeted attacks against Japanese organizations, continues to employ its signature methods—blending proven tactics with updated technical refinements. In recent months, experts from JPCERT have recorded a new wave...
