By krahal

According to Zimperium's "2024 zLabs Global Mobile Threat Report," 82 percent of all phishing sites now target mobile devices. The report also shows that 76 percent of these sites use HTTPS, leading users to believe they are secure.

The US Cybersecurity and Infrastructure Security Agency (CISA) warns of threat actors targeting Internet-exposed industrial devices with "unsophisticated" methods such as brute-force attacks and using default credentials to breach critical infras

HiddenLayer warns that Google's Artificial Intelligence (AI) assistant Gemini faces indirect prompt injection flaws that could lead to phishing and chatbot takeover attacks.

Following the discovery that thousands of US Congress staffers could be vulnerable to account hijacking and phishing, security experts have repeatedly warned against using work email addresses to sign up for third-party sites.

According to the Cybersecurity and Infrastructure Security Agency (CISA), a critical authentication bypass vulnerability in Ivanti Virtual Traffic Manager (vTM) has now been exploited by threat actors in the wild.

The US House Homeland Security Committee Republicans have recently unveiled a new bill aimed at addressing the growing cyber threats posed by state-sponsored Chinese actors targeting US critical infrastructure.

A security researcher recently launched a project with the goal of showing that physical access control vulnerabilities still impact many organizations.

HP intercepted an email campaign involving a standard malware payload delivered via an Artificial Intelligence (AI)-generated dropper.

Mobile banking users worldwide are at risk from "Octo2," a new, advanced "Octo" malware variant. ThreatFabric analysts say Octo malware is one of the most widespread mobile threats in recent years.

The cyber espionage malware called "RomCom," which targeted the Ukraine military and its supporters last year, has returned with a new variant. It uses valid code-signing certificates to evade detection.

CyberDanube, an Austrian industrial cybersecurity company, says hackers can take control of Riello Uninterruptible Power Supply (UPS) devices by exploiting unpatched vulnerabilities.