Infosec News

Trustwave's Threat Intelligence team has discovered a new malware dubbed Pronsis Loader, with its earliest known variant dating back to November 2023.

The thieves modify transaction messages to initiate unauthorized withdrawals, even when there are insufficient funds.

Intel is in hot water in China.

Have I Been Pwned allows you to search across multiple data breaches to see if your email address or phone number has been compromised.

Attackers leverage QR codes in PDF email attachments to spearphish corporate credentials from mobile devices

Cybercriminals abuse EDRSilencer to disable endpoint detection tools, making malicious activity harder to detect.

Forty-three governments worldwide have attacked or killed citizens for their online speech and 25 cut off internet access during election periods, metrics which contributed to an overall decline in internet freedoms in 2024, a new report says.

With the US election on the horizon, it’s a good time to explore the concept of social media weaponization and its use in manipulating public opinion.

The REF6138 campaign involved cryptomining, DDoS attacks, and potential money laundering via gambling APIs, highlighting the attackers' use of evolving malware and stealthy communication channels.

TrickMo Android malware now steals unlock patterns, PINs, and more, posing a severe threat to mobile banking.

The 2024 Trustwave Risk Radar Report: Financial Services Sector underscores the escalating threat landscape facing the industry.

Kaspersky experts have discovered a new version of the APT Awaken Likho RAT Trojan, which uses AutoIt scripts and the MeshCentral system to target Russian organizations.

Elastic Security Labs discusses detection and mitigation strategies for vulnerabilities in the CUPS printing system, which allow unauthenticated attackers to exploit the system via IPP and mDNS, resulting in remote code execution (RCE) on UNIX-based systems such as Linux, macOS, BSDs, ChromeOS, and ...

Discover how North Korean attackers, posing as recruiters, used an updated downloader and backdoor in a campaign targeting tech job seekers. Discover how North Korean attackers, posing as recruiters, used an updated downloader and backdoor in a campaign targeting tech job seekers.

Microsoft has observed the threat actor tracked as Storm-0501 launching a multi-staged attack where they compromised hybrid cloud environments and performed lateral movement from on-premises to cloud environment, leading to data exfiltration, credential theft, tampering, persistent backdoor access, ...

If you successfully complete all 10 Flare-On challenges, you will be eligible to receive a prize.

Beijing has challenged the U.S. narrative on the China-linked Volt Typhoon group and accused Washington of being the real aggressor in global cyber espionage.

UNC2970 is a cyber espionage group suspected to have a North Korea nexus.

Have I Been Pwned allows you to search across multiple data breaches to see if your email address or phone number has been compromised.

Japanese video game developer Game Freak confirmed last week that it suffered a cyberattack earlier this year, resulting in a data leak.

U.S. DoJ charges 18 in a $25M cryptocurrency fraud operation, uncovering market manipulation through an FBI-led sting.

Gartner® names Microsoft a Leader in Endpoint Protection Platforms. Read how we're helping organizations protect endpoints while driving efficiency.

The Cyber Resilience Act is part of a broader push by the EU to enhance its cybersecurity framework in response to growing threats.

North Korean state-sponsored hacking group Hidden Cobra, also known as APT38 or Lazarus, has expanded its notorious FASTCash malware to Linux systems, specifically targeting Ubuntu 22.04 LTS distributions. The new variant allows the group to infiltrate payment switch systems, enabling unauthorized A...

Discover recent attacks using Lynx ransomware, a rebrand of INC, targeting multiple crucial sectors in the U.S. and UK with prevalent double-extortion tactics. Discover recent attacks using Lynx ransomware, a rebrand of INC, targeting multiple crucial sectors in the U.S. and UK with prevalent double...