Threat predictions for 2024: Chained AI and CaaS operations give attackers more ‘easy’ buttons than everSponsored by FortinetNovember 22, 2023
RansomwareHow OSINT awareness can mitigate social-engineering attacksSteve DurbinMarch 5, 2025Here are four ways security teams can build OSINT-aware strategies.
Cloud SecurityMisconfigured AWS environments exploited to facilitate phishingSC StaffMarch 4, 2025Targeted AWS accounts are also being continuously accessed from another hijacked account.
PhishingHavoc C2 framework spread in novel ClickFix phishing campaignSC StaffMarch 4, 2025Havoc also leverages Microsoft Graph's SharePoint APIs to enable command delivery and receipt.
PhishingMassive phishing campaign taps bogus CAPTCHA PDFs to spread Lumma StealerSC StaffMarch 3, 2025Intrusions entailed the exploitation of search engine optimization to lure victims.
MalwareAttacks with Winos 4.0 malware hit TaiwanSC StaffFebruary 28, 2025Attacks were initiated with malicious emails purporting to be a tax inspection schedule.
Threat IntelligenceLumma Stealer spread by reemergent Angry Likho APTSC StaffFebruary 28, 2025Angry Likho commenced intrusions with delivery of phishing emails with malicious RAR attachments.
Vulnerability ManagementMassive spam ads campaign facilitated by Krpano framework XSS exploitSC StaffFebruary 27, 2025More than 350 websites have been compromised as part of the sweeping 360XSS spam ads attack.
