The CursedGrabber malware has infiltrated the open-source software code repository. Three malicious software packages have been published to npm, a code repository for JavaScript developers to ...

Previously, Changpeng had tweeted that his company’s threat intelligence team detected 1 billion Chinese resident records for sale on the dark web, citing the “likely” culprit for the leak ...

Bad actor obtained passwords for servers, home routers, and smart devices by scanning internet for devices open to the Telnet port.

Microsoft warns that cybercriminals are using Cobalt Strike to infect entire networks beyond the infection point, according to a report.

The notorious Lazarus advanced persistent threat (APT) group has been identified as the cybergang behind a campaign spreading malicious documents to job-seeking engineers. The ploy involves ...

Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system.

The data includes IP addresses for Cobalt Strike C2 servers as well as an archive including numerous tools and training materials for the group, revealing how it performs attacks.

The threat actors stole data and used Clop's leaks site to demand money in an extortion scheme, though no ransomware was deployed.

A privilege elevation bug in Windows 10 opens all systems to attackers to access data and create new accounts on systems.

Researchers were able to bypass Apple’s FaceID using a pair of glasses with tape on the lenses. LAS VEGAS – Vulnerabilities have been uncovered in the authentication process of biometrics ...

Phishing emails target a bank's users with malware - and make their landing page look more legitimate with fake Google reCAPTCHAs.

Instances of phishing attacks leveraging the Microsoft brand increased 266 percent in Q1 compared to the year prior.