Iran's MuddyWater Hackers Hit US Firms with New 'Dindoor' Backdoor
A bank, an airport, a non-profit and the Israeli branch of a US software company were among the targets of this new MuddyWater campaign
Information Security Magazine
Zero‑Day Attacks on Enterprise Software Reach Record High, Google Warns
17 hours 57 minutes ago
Almost a quarter of the zero days detected by Google in 2025 targeted security and networking appliances
AI-Driven Insider Risk Now a “Critical Business Threat,” Report Warns
1 day 14 hours ago
Malicious insiders are using misusing AI for nefarious gain, while employees cutting corners also creates risk, warns Mimecast
ContextCrush Flaw Exposes AI Development Tools to Attacks
1 day 16 hours ago
Critical flaw "ContextCrush" in Context7 MCP Server could allow malicious instructions into AI tools
Coruna Exploit Kit Targets Older iPhones in Multi-Stage Campaigns
1 day 18 hours ago
Exploit kit "Coruna" targets iPhones running iOS 13.0 to 17.2.1, focusing on financial data theft
Zero-Click FreeScout Bug Enables Remote Code Execution
1 day 19 hours ago
Ox Security warns that Mail2Shell could enable threat actors to hijack FreeScout systems without user interaction
Cisco Issues Patches for 48 Vulnerabilities in Enterprise Networking Products
1 day 19 hours ago
Two of the 48 Cisco vulnerabilities, affecting Secure Firewall Management Center, are maximum-severity flaws
Europol Operation Seizes LeakBase Data Breach Site
1 day 20 hours ago
A global operation has resulted in the takedown of popular cybercrime forum LeakBase
Coalition of Western Countries Launches 6G Cybersecurity Guidelines
2 days 13 hours ago
A coalition of seven Western nations has launched guidelines to help integrate security-by-design principles into future 6G standards
Global Takedown Neutralizes Tycoon2FA Phishing Service
2 days 14 hours ago
Law enforcers and industry partners have taken down notorious phishing-as-a-service platform Tycoon2FA
Surge in Attacks on Surveillance Cameras Linked to Iranian Hackers
2 days 15 hours ago
Increased attempts to compromise surveillance cameras linked to Iran during Middle East conflict
Multi-Stage "BadPaw" Malware Campaign Targets Ukraine
2 days 15 hours ago
Malware campaign uses Ukrainian email service for credibility, deploying "BadPaw" to execute attacks
Calls for Global Digital Estate Standard as Posthumous Deepfake Fraud Risk Grows
2 days 19 hours ago
The OpenID Foundation warns that fragmented policies on posthumous digital accounts could open the door for fraudsters to exploit AI deepfakes
Israel: RedAlert Spyware Campaign Exploits Wartime Panic With Trojanized App
3 days 14 hours ago
Espionage campaign exploits Israel-Iran conflict, distributing a trojanized Red Alert app via SMS
AI and Deepfakes Supercharge Sophisticated Cyber-Attacks, Says Cloudflare
3 days 14 hours ago
Cloudflare Threat Report warns that AI tools enable attackers who lacked required skills to generate effective attacks rapidly and at scale
Leaked Database Sheds Light on Iranian Crypto Sanctions Evasion
3 days 15 hours ago
Ariomex database reveals potential sanctions evasion and capital transfers tied to Iranian actors
Half of US CISOs Work the Equivalent of a Six-Day Week
3 days 16 hours ago
Seemplicity finds US security leaders work 11 or more extra hours per week
Huge “Shadow Layer” of Organizations Hit by Supply Chain Attacks
3 days 19 hours ago
Black Kite reveals 26,000 unnamed corporate victims linked to 136 third-party breaches
Iranian Cyber Threat Actor Targets Iraqi Government Officials in AI-Powered Campaign
3 days 19 hours ago
Zscaler ThreatLabz assessed with medium to high confidence that an Iranian adversary targeted Iraq’s Ministry of Foreign Affairs in a new cyber-attack
Chrome Unveils Plan For Quantum-Safe HTTPS Certificates
4 days 14 hours ago
Google Chrome initiates quantum-resistant measures via Merkle Tree Certificates to secure HTTPS
Checked
11 hours 26 minutes ago