China-linked hackers use compromised SOHO devices in espionage campaign, targeting Taiwan, the U.S., and Southeast Asia.

The executable, as observed in prior Mustang Panda attacks, leverages DLL side-loading to launch a malicious DLL dubbed ...

A new campaign has been observed leveraging fake websites advertising popular software such as WPS Office, Sogou, and ...

Threat intelligence firm GreyNoise is warning of a "notable surge" in scanning activity targeting Progress MOVEit Transfer ...

ClickOnce is offered by Microsoft as a way to install and update Windows-based applications with minimal user interaction. It ...

AI SOC Analysts reduce false positives by 90%, boost SOC productivity, and tackle the global analyst shortage.

Iranian hackers linked to APT35 target Israeli professionals using AI-driven phishing, fake Gmail pages, and 2FA bypass.

SaaS platforms lack comprehensive data protection, exposing organizations to data loss, compliance risks, and cyberthreats.

A critical vulnerability in Open VSX Registry could allow attackers to control VS Code extensions, threatening millions of developers.

Guest users in Entra ID may exploit billing roles to create and control subscriptions, escalating access undetected.

The disclosure comes as Citrix patched a critical-rated security flaw in NetScaler (CVE-2025-5777, CVSS score: 9.3) that ...

CISA adds 3 critical vulnerabilities to KEV catalog, affecting AMI MegaRAC, D-Link, and Fortinet, urging mitigations by July ...