Microsoft has confirmed that three China-linked threat groups were behind the recent wave of attacks targeting on-premises SharePoint Server installations. According to the company’s report, since early July, the vulnerabilities identified as CVE-2025-53770 and...
A newly uncovered malicious campaign involving the infostealer DeerStealer has been identified by researchers at ANY.RUN. Threat actors are employing a sophisticated tactic—combining Windows shortcut files (LNK) with trusted system utilities known as Living-off-the-Land...
In 2023, one of the United Kingdom’s oldest transport companies—established 158 years ago—declared bankruptcy following a devastating ransomware attack. The cyber assault brought the operations of Knights of Old (also known as KNP) to...
Recently uncovered critical vulnerabilities in Cisco’s infrastructure are already being actively exploited by malicious actors to compromise corporate networks. The company has officially confirmed that its Product Security Incident Response Team (PSIRT) has observed...
The British government has announced its preparation for a bold and decisive move in the fight against cybercrime—a sweeping ban on ransom payments following ransomware attacks. This new prohibition will apply to public sector...
Dell has officially confirmed a cybersecurity breach and subsequent data leak within its IT environment, while emphasizing that the compromised files hold no real value. According to the company, the leaked data primarily consists...
Amid the relentless surge of digital threats, companies across the globe find themselves under a barrage of cyberattacks. According to the latest data from Check Point Research, each organization now endures an average of...
Cybercriminals are mastering increasingly sophisticated methods of delivering malicious code, leveraging unconventional file formats to evade security defenses. A recent case documented by researchers illustrates how a seemingly innocuous audio message in WAV format...
ExpressVPN has resolved a vulnerability in its Windows client that allowed Remote Desktop Protocol (RDP) connections to bypass the VPN tunnel, thereby exposing users’ real IP addresses. The issue affected versions 12.97 through 12.101.0.2-beta...
The Chinese cyber group known as SilverFox, active since June 2023, has launched one of the most expansive malware distribution campaigns targeting Windows to date. Focusing on Chinese-speaking users worldwide—including business professionals operating outside...
An eBPF agent that captures traffic flowing through the Linux kernel. By attaching to TLS/SSL functions, data is intercepted before and after encryption and then passed to flexible plugins with full visibility along with...
Over the past several months, researchers at Cyble Research and Intelligence Labs (CRIL) have been closely monitoring a large-scale and technically sophisticated phishing campaign known as Scanception. Its hallmark lies in the use of...
Pavel Durov, the founder of Telegram, has issued a warning about a new wave of extortion emerging within the platform. The scheme involves fraudsters demanding that users surrender valuable digital assets—rare Telegram gifts, premium...
Cybersecurity specialists at cside have uncovered a vast and covert cryptocurrency mining campaign that has compromised over 3,500 websites—marking the largest incident of its kind in recent years and signaling the resurgence of tactics...
AI-powered programming tools are rapidly gaining popularity, and one of the most prominent—Cursor—has introduced a new YOLO mode (short for “you only live once”) that enables its agent to execute complex sequences of actions...
Following a wave of criticism sparked by a recent ProPublica report alleging that Microsoft had engaged engineers based in China to support cloud systems tied to the U.S. Department of Defense, the company has...
