CISA Flags Four Security Flaws Under Active Exploitation in Latest KEV Update
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) catalog by…
Reynolds Ransomware Embeds BYOVD Driver to Disable EDR Security Tools
Cybersecurity researchers have identified a new ransomware family called Reynolds that incorporates a dangerous defense evasion technique…
DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies
North Korean (DPRK) operatives are escalating their cyber espionage tactics by impersonating real professionals on LinkedIn to…
North Korea-Linked UNC1069 Uses AI Lures to Attack Cryptocurrency Organizations
The North Korea-linked threat actor UNC1069 has been observed targeting cryptocurrency organizations through a sophisticated social engineering…
SSHStalker Botnet Uses IRC C2 to Control Linux Systems via Legacy Kernel Exploits
Cybersecurity researchers have identified a new botnet named SSHStalker, which leverages the Internet Relay Chat (IRC) protocol…
Microsoft Patches 59 Vulnerabilities Including Six Actively Exploited Zero-Days
Microsoft has released security updates addressing 59 vulnerabilities across its software, including six zero-day flaws that are…
Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies
Cybersecurity researchers have revealed that AI assistants with web browsing capabilities, such as Microsoft Copilot and xAI…
Keenadu Firmware Backdoor Infects Android Tablets via Signed OTA Updates
A new Android backdoor named Keenadu has been discovered embedded in device firmware, enabling silent data harvesting…
My Day Getting My Hands Dirty with an NDR System
The article details a hands-on exploration of Network Detection and Response (NDR) systems by an inexperienced user…
SmartLoader Attack Uses Trojanized Oura MCP Server to Deploy StealC Infostealer
Cybersecurity researchers have uncovered a new SmartLoader campaign that distributes a trojanized version of an Oura Health…