Critical Vulnerabilities Are Being Exploited Faster Than Ever — Why Your Internet Exposure Matters Organizations cannot control when the next major security flaw will appear. What they can control is how much of their infrastructure is exposed to the internet…
AI Agents Are Creating a New Cybersecurity Risk Companies Can’t Ignore Artificial Intelligence is quickly evolving beyond simple chatbots and virtual assistants. Today, many businesses are deploying AI agents that can perform tasks automatically without direct human control. These digital…
Google Looker Studio Vulnerabilities Could Have Exposed Cloud Databases Across Organizations Cybersecurity researchers have uncovered a series of serious security weaknesses in Google Looker Studio that could have allowed attackers to access sensitive data stored in organizations’ Google Cloud environments.…
Security Researchers Warn of Chrome Extensions Turning Malicious After Ownership Transfers Cybersecurity researchers have uncovered a troubling trend involving Google Chrome extensions that became malicious after changing ownership. These compromised extensions allowed attackers to inject harmful code into users’ browsers,…
Webinar Explores How Smaller Organizations Can Improve Security While Reducing Complexity Many mid-sized companies are under growing pressure to maintain cybersecurity standards similar to large enterprises. With the rise of supply chain attacks and stricter security expectations from partners and…
North Korean Cyber Group Suspected in Major Cloud Attack on Crypto Firm A sophisticated cyberattack targeting a cryptocurrency organization in 2025 has been linked to a North Korean hacking group known as UNC4899, according to new threat intelligence findings. Security…
Fake OpenClaw npm Package Found Delivering RAT and Data-Stealing Malware Security researchers have uncovered a dangerous npm package posing as an installer for OpenClaw. Instead of installing legitimate software, the package secretly deploys malware designed to steal sensitive information and…
Two Critical Security Flaws Added to CISA’s KEV List The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two serious security vulnerabilities affecting Hikvision surveillance devices and Rockwell Automation industrial software to its Known Exploited Vulnerabilities (KEV) catalog. The…
Microsoft Warns of New Social Engineering Campaign Security researchers have uncovered a new cyber campaign that tricks users into launching malicious commands through Windows Terminal, eventually installing the Lumma Stealer information-stealing malware. The attack method, recently identified by Microsoft Threat…
New Cyber Espionage Campaign Targets Telecom Infrastructure Security researchers have identified a cyber-espionage campaign believed to be carried out by a China-linked hacking group that has been infiltrating telecommunications networks in South America since 2024. The operation, tracked by security…
Iranian Cyber Espionage Activity Detected in Multiple U.S. Networks Security researchers have uncovered evidence that an Iranian state-linked hacking group has infiltrated the networks of several organizations in North America, including banks, airports, and non-profit groups. The investigation, conducted by…
Why AI-Driven Risk Management Is Becoming Essential for MSPs Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) are under growing pressure to deliver stronger cybersecurity services while also expanding their business. To scale effectively, providers need more than…
Researchers Uncover Advanced Script-Based Malware Framework Cybersecurity analysts have uncovered a sophisticated malware operation that uses batch scripts and Python-based loaders to deploy multiple remote access trojans (RATs), including XWorm, AsyncRAT, and Xeno RAT. The campaign, which researchers have named…
Pakistan-Linked Hackers Turn to AI to Produce Large Volumes of Malware A cyber-espionage group believed to be aligned with Pakistan, commonly tracked as Transparent Tribe (APT36), has begun using artificial intelligence coding tools to accelerate the development of malware used…
Fake IT Support Calls Used to Deploy Havoc Malware in Targeted Cyber Attacks Security researchers have uncovered a new cyberattack campaign in which attackers pose as IT support staff to trick victims into granting remote access to their systems. Once…
CISA Adds VMware Aria Operations Flaw to Exploited Vulnerabilities List The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about a newly discovered security flaw affecting Broadcom VMware Aria Operations, adding the vulnerability to its Known Exploited…
Silver Dragon Hackers Target Governments and Organizations in Global Cyber Espionage Campaign Cybersecurity researchers have uncovered a sophisticated hacking group known as Silver Dragon, which has been carrying out cyber-espionage operations against organizations in Europe and Southeast Asia since at…
Security researchers have uncovered several malicious packages on the Packagist PHP repository that pretend to be useful Laravel development tools but actually install a dangerous remote access trojan (RAT). The infected packages were designed to look like legitimate utilities for…
AI Governance Is Becoming a Priority, But Many Companies Still Don’t Know What to Secure Artificial intelligence is rapidly becoming a core driver of productivity inside modern organizations. From automated research tools to AI-powered coding assistants, businesses are integrating AI…
Cybersecurity researchers have uncovered a powerful exploit framework known as Coruna, also referred to as CryptoWaters, that has been used to attack Apple iPhones running older versions of iOS. According to researchers from the Google Threat Intelligence Group (GTIG), the…
