Cisco Talos Incident Response recently uncovered a ransomware-as-a-service (RaaS) operation called "Chaos." This group specializes in attacking large organizations, stealing data, and demanding a ransom. It often threatens to leak victim data if the ransom goes unpaid, otherwise known as the double
On July 19, 2025, Microsoft's Security Response Center warned that multiple nation-state threat actors are actively exploiting two serious vulnerabilities in on-premises SharePoint servers. These flaws, namely CVE-2025-49706, a spoofing vulnerability, and CVE-2025-49704, a remote code execution issu
The United Kingdom's National Cyber Security Centre (NCSC) has uncovered a highly targeted and stealthy malware strain, dubbed Authentic Antics, that infiltrates Microsoft Outlook on Windows to trick victims into surrendering their Office login credentials and freshly minted OAuth 2.0 token. A
Cybersecurity experts at Morphisec report that Matanbuchus, launched as malware-as-a-service (MaaS) in 2021, has returned with an upgraded and powerful new version, Matanbuchus 3.0. The malware lets attackers rent a powerful loader that can install additional malicious tools on Windows computers, ac
Due to a set of newly discovered flaws, vehicles from major car brands like Mercedes-Benz, Volkswagen, and Škoda may be vulnerable to remote attacks via Bluetooth. Researchers have identified a group of security issues, collectively named "PerfektBlue", that could allow hackers to remotely take cont
Qantas has confirmed a cyberattack that exposed the personal information of millions of customers. The breach originated not within the airline's own IT infrastructure but through a third-party platform used to support customer service operations. According to Qantas, the incident was detected and
Researchers have uncovered a sophisticated cyber-espionage campaign known as OneClik, which targets organizations in the energy, oil, and gas sectors. The attackers exploit Microsoft's ClickOnce deployment technology—a tool designed to streamline the installation and updating of Windows applications
The Anubis ransomware operation, which emerged in December 2024, represents a chilling evolution in cyber extortion techniques. Unlike conventional ransomware, which encrypts files for ransom, Anubis enhances its menace with a destructive "wipe mode" feature. This dual functionality blurs the line b
The Federal Bureau of Investigation (FBI) has recently alerted the public about cyber criminals exploiting Internet of Things (IoT) devices connected to home networks through the BadBox 2.0 botnet. These criminals gain unauthorized access to home networks by compromising IoT devices such as TV strea
In May 2025, cybersecurity firm Darktrace identified a novel botnet named "PumaBot" targeting Internet of Things (IoT) surveillance devices. Unlike traditional botnets that scan the internet indiscriminately, PumaBot employs a more focused approach, retrieving specific targets from a command-and-con