Rubrik, the leader in cloud data management, has revealed that hackers attacked the company by exploiting a flaw in a popular file transfer tool. The Clop ransomware group, which has been exploiting a flaw in Fortra's GoAnywhere Managed File Transfer…

Hoxhunt, the industry leader in behavior change software for cybersecurity, has issued a report analyzing the effectiveness of ChatGPT-generated phishing attempts. The study compared the success rate of simulated phishing attacks developed by human…

SpyCloud's latest Identity Exposure Report reveals that its researchers retrieved 721.5 million exposed credentials from the criminal underworld and discovered over 22 million unique devices infected with malware in the last year. Around 50 percent of…

During the past nine months, a previously unknown Russian-speaking threat actor has launched cyber espionage campaigns against government, energy, and international organizations in Azerbaijan, Kyrgyzstan, Tajikistan, as well as European nations. The…

Security researchers at Check Point Research have spotted a new Android vishing (voice phishing) malware tool targeting victims in South Korea by impersonating 20 leading financial institutions in the region.  Dubbed "FakeCalls," the malware baits…

Security researchers at BlackBerry have observed Russia-linked cyberespionage group APT29 abusing two legitimate information exchange systems used by European countries.  APT29 is a Russian advanced persistent threat (APT) actor mainly focused on…

The threat actor known as DEV-1101 has been spotted by security researchers at Microsoft, developing and advertising a new adversary-in-the-middle (AiTM) open source phishing kit.  The researchers noted that the threat actor group began offering…

According to a team of computer scientists from New York and San Diego, smartphone spyware apps that allow people to spy on each other are difficult to notice and detect, and easily leak the sensitive personal information they collect. Spyware apps are…

The National Security Agency (NSA) has released a Cybersecurity Information Sheet (CSI) titled "Advancing Zero Trust Maturity throughout the User Pillar" to help system operators in maturing their Identity, Credential, and Access Management (ICAM)…

Security researchers at Proofpoint have uncovered several new phishing campaigns using the collapse of Silicon Valley Bank (SVB) as a lure to steal cryptocurrency.  The researchers stated that they spotted lures related to USD Coin (USDC), a digital…

According to research conducted by Cybernews, the top aviation company Safran Group left itself vulnerable to cyberattacks for over a year, thus highlighting the vulnerability of major aviation companies to being targeted by threat actors. The Cybernews…

The first known cryptojacking operation mining the Dero cryptocurrency has been observed targeting vulnerable Kubernetes container orchestrator infrastructure with exposed Application Programming Interfaces (APIs). Dero is a privacy coin advertised as a…