Midway through this year, specialists at Arctic Wolf uncovered a sprawling malicious campaign that spread across South America, Africa, and Eastern Europe. At its core lay a tool of Brazilian origin known as Caminho...
The Coveware report on ransomware activity for the third quarter of 2025 paints a paradoxical picture. On one hand, mass-scale Ransomware-as-a-Service (RaaS) campaigns continue to flood mid-tier companies; on the other, there is a...
The widespread confidence among companies in their own cyber resilience is colliding with a new wave of threats — this time, driven by artificial intelligence. According to the OpenText Cybersecurity Report 2025, 95% of...
A large-scale phishing campaign targeting LastPass users and clients of major cryptocurrency exchanges began in mid-October, spreading under the guise of official service notifications. LastPass has warned that the attack is orchestrated by the...
Along the Myanmar–Thailand border, a swift and tangled drama is unfolding around one of the region’s most notorious hubs of online fraud — the KK Park complex. In recent days, footage has surfaced showing...
Two British teenagers are set to stand trial over last year’s cyberattack on London’s transport system — an incident investigators have linked to the hacking collective Scattered Spider, with Transport for London (TfL) estimating...
On October 25, 2025, in Hanoi, Vietnam, the signing ceremony for the world’s first global United Nations Convention on the Prevention and Response to Cybercrime was officially inaugurated. According to the United Nations Office...
In March 2025, Kaspersky Lab recorded a surge of infections triggered when users followed personalized phishing links sent via email. No additional interaction was required to activate the attack—merely opening the malicious site in...
The Pakistani hacking collective known as Transparent Tribe (APT36) has intensified cyber-espionage operations against Indian government institutions, deploying a new Go-written malware dubbed DeskRAT, researchers at Sekoia reported after observing activity in August and...
Government-backed hackers infiltrated a U.S. nuclear weapons component manufacturer by exploiting vulnerabilities in Microsoft SharePoint. The incident affected the Kansas City National Security Campus (KCNSC), part of the National Nuclear Security Administration (NNSA) under...
After a brief period of dormancy, the operator of the LockBit ransomware has returned to full-scale activity, unveiling a new and more sophisticated version of its malware. In the spring of 2024, the group’s...
In mid-summer 2025, the ToolShell vulnerability (CVE-2025-53770) became the catalyst for a major wave of compromises. Attackers exploited the flaw on SharePoint servers shortly after Microsoft released its patch, gaining unauthenticated access to files...
