Cybersecurity
627 articles in this category (Page 26 of 27)
ThreatsDay Bulletin: AI Tools in Malware, Botnets, GDI Flaws, Election Attacks & More
This ThreatsDay Bulletin highlights critical cybersecurity threats, including AI-driven malware analysis, Windows GDI vulnerabilities, global ransomware trends, and emerging attack vectors like fake apps and botnets.
Trojanized ESET Installers Used in Phishing Campaigns to Deploy Kalambur Backdoor in Ukraine
A Russia-aligned threat group, InedibleOchotense, is exploiting ESET's reputation through phishing attacks to deploy the Kalambur backdoor in Ukraine, alongside Sandworm's wiper campaigns and RomCom's WinRAR 0-day exploits.
Mysterious 'SmudgedSerpent' Hackers Target U.S. Policy Experts Amid Iran–Israel Tensions
Proofpoint identifies UNK_SmudgedSerpent, an Iranian-linked group using fake Microsoft Teams apps to phish U.S. policy experts during heightened Iran-Israel tensions, with attacks spanning June–August 2025.
Cybercrime Merger: Scattered LAPSUS$ Hunters Unite as Major Threat
Scattered Spider, LAPSUS$, and ShinyHunters merge as 'Scattered LAPSUS$ Hunters' (SLH), leveraging Telegram for extortion and expanding their cybercriminal network through affiliations and ransomware development.
U.S. Prosecutors Indict Cybersecurity Insiders for BlackCat Ransomware Attacks
Federal prosecutors in the U.S. have indicted three cybersecurity professionals for orchestrating BlackCat ransomware attacks on five companies between May and November 2023, highlighting the risks of insider threats in the cybersecurity sector.
Installing WireGuard on Ubuntu 24.04: A Step-by-Step Guide to Setting Up a Secure VPN
This guide provides a detailed walkthrough of installing and configuring WireGuard on Ubuntu 24.04, enabling users to create a fast, secure, and privacy-focused VPN for mobile and desktop devices.
Malicious VSX Extension SleepyDuck Leverages Ethereum for Persistent Command Server Control
Researchers uncover SleepyDuck RAT hidden in a VSX extension, using Ethereum contracts to dynamically update its command-and-control server, highlighting risks in open-source software ecosystems.
The Evolution of SOC Operations: How Continuous Exposure Management Transforms Security Operations
Continuous exposure management reduces SOC alert fatigue by integrating real-time context into threat detection, enabling precise incident response and proactive risk mitigation.
Weekly Cybersecurity Recap: Emerging Threats, Vulnerabilities, and Industry Developments (2025-11-03)
A detailed summary of critical cyber threats, exploits, and updates from late 2025, including nation-state attacks, AI-driven vulnerabilities, and new security tools.
China-Linked Hackers Exploit Windows Shortcut Flaw to Target European Diplomats
A China-affiliated hacking group, UNC6384, exploited an unpatched Windows vulnerability (CVE-2025-9491) to target European diplomatic and government entities through spear-phishing campaigns and PlugX malware.
ThreatsDay Bulletin: Emerging Cybersecurity Threats and Vulnerabilities in 2025
A comprehensive overview of 2025's critical cybersecurity threats, including DNS poisoning, supply-chain attacks, Rust-based malware, and rising ransomware trends, as detailed in The Hacker News' ThreatsDay bulletin.
Experts Report Sharp Increase in Automated Botnet Attacks Targeting PHP Servers and IoT Devices
Cybersecurity researchers highlight a surge in botnet attacks exploiting PHP vulnerabilities, IoT weaknesses, and cloud misconfigurations, with DDoS capacities exceeding 20 Tbps and credential stuffing campaigns.