Security researchers at Lumen Technologies’ Black Lotus Labs say they have taken action against a large command-and-control infrastructure tied to the AISURU and Kimwolf botnets. Since early October 2025, the team has null-routed traffic linked to more than 550 C2…
Security researchers have identified a new malware operation, tracked as SHADOW#REACTOR, that uses a carefully layered infection process to install Remcos RAT, a commercially available remote access trojan widely abused by cybercriminals. The campaign relies on a stealthy, multi-step execution…
Threat Intelligence / Identity Security The security world often fixates on what’s new. AI-driven attacks. Post-quantum cryptography. Zero-trust frameworks. Yet when you step back and look at what’s actually working for attackers in 2025, the picture is far less futuristic.…
Artificial Intelligence / Automation Security AI systems have moved far beyond assisting developers with suggestions. Today’s AI agents can write code, execute it, test applications, and deploy updates with little to no human involvement. Platforms such as Copilot, Claude Code,…
An Iranian-linked hacking group known as MuddyWater has been connected to a new spear-phishing operation aimed at organizations in the diplomatic, maritime, financial, and telecommunications sectors across the Middle East. The activity centers on a Rust-based malware implant researchers have…
The U.S. Department of the Treasury has removed three individuals connected to the Intellexa Consortium from its sanctions list, raising new questions about the future oversight of commercial spyware operations. The individuals removed from the Office of Foreign Assets Control…
