ShadowCaptcha exploits 100+ WordPress sites since Aug 2025, spreading ransomware, stealers, and miners worldwide.

HOOK Android trojan evolves with 107 commands, adding ransomware overlays and NFC scams, threatening financial security.

"Android will require all apps to be registered by verified developers in order to be installed by users on certified Android ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added three security flaws impacting Citrix ...

UNC6384 is assessed to share tactical and tooling overlaps with a known Chinese hacking group called Mustang Panda, which is also tracked as BASIN, Bronze President, Camaro Dragon, Earth Preta, ...

Docker patched CVE-2025-9074 (CVSS 9.3), a flaw enabling container escape via unauthenticated API, risking host takeover.

UpCrypter phishing since Aug 2025 uses fake voicemails, RAT payloads, and anti-analysis, hitting global industries.

Organizations detected only 1 in 7 attacks in 2025; log failures, misconfigurations, and performance issues left systems ...

Traditional tools fail; Keeper CEO highlights zero trust, least privilege, and AI automation reshaping defense.

Transparent Tribe targets Indian government using weaponized .desktop files since 2022, enabling persistence and credential ...

ShinyHunters is a notorious cybercrime group that has resurfaced with a new playbook of SaaS-focused attacks. Known for ...

The details are transmitted to a threat actor-controlled Telegram bot named "@sshZXC_bot" (ssh_bot) via the API, which then ...