North Korea-linked threat actors are using poisoned Python packages to spread "PondRAT" malware as part of an ongoing campaign.

An infostealer malware operation spanning 30 campaigns targeting different demographics and system platforms has been attributed to "Marko Polo," a cybercriminal group.

The cybersecurity community started warning about remote hacker attacks on Automatic Tank Gauge (ATG) systems nearly a decade ago, but critical vulnerabilities remain.

SentinelLabs presented research at LABScon 2024 that brought attention to the resurfacing of "Kryptina," a Ransomware-as-a-Service (RaaS) tool, in enterprise attacks.

Mandiant further explored "UNC1860," an Iranian Advanced Persistent Threat (APT) actor that serves as an initial access provider to high-profile networks in the Middle East.

According to a new mid-year cyber report from Ukraine authorities, Russian-aligned threat actors are shifting away from broad information-stealing campaigns across the country and toward cyber espionage targeting military infrastructure.

Carnegie Mellon University's (CMU) CERT Coordination Center (CERT/CC) published an advisory for a critical flaw, discovered by Amazon Element55's Andrue Coombes, in the Microchip Advanced Software Framework (ASF).

According to security researchers at HP Wolf Security, cybercriminals are using a wider-than-ever range of malicious documents to spread malware and gain initial access to target systems.

Arkansas City, a small city in Kansas, recently announced that its water treatment facility was forced to switch to manual operations while a cybersecurity incident is being resolved.

MoneyGram International’s money transfer services are down after the company announced that it is struggling with a cyberattack that forced it to take certain systems offline.  The incident started on September 22.

During a new study, security researchers at SonicWall found that over 14 million patients have been affected by data breaches caused by malware attacks on US healthcare organizations in 2024.

Two apps with about 11 millions in the official Google Play app store were discovered to be infected with the "Necro" trojan, which is a multi-stage loader.