Formbook Malware Campaign Uses Multiple Obfuscation Techniques to Avoid Detection
Formbook attacks use combination of DLL Side-Loading and Obfuscated JavaScript to stay hidden, researchers at WatchGuard have uncovered
Information Security Magazine
Attackers Exploit DVR Command Injection Flaw to Deploy Mirai-Based Botnet
12 hours 26 minutes ago
FortiGuard Labs has identified a Mirai-based Nexcorium campaign actively exploiting CVE-2024-3721 in TBK DVR devices
NCSC Outlines Coordinated Plan to Boost NHS Cyber Resilience
15 hours 57 minutes ago
The National Cyber Security Centre has shared an update of its resilience-building efforts for the NHS
Crypto Exchange Grinex Blames Western Spies for $13m Theft
16 hours 27 minutes ago
Russian crypto-exchange Grinex claims Western intelligence agencies were behind a $13m heist
Commercial AI Models Show Rapid Gains in Vulnerability Research
3 days 12 hours ago
AI models are making rapid gains in vulnerability research and exploit development, raising new cybersecurity risks, a Forescout study finds
DDoS-For-Hire Services Disrupted by International Police Action in ‘Operation PowerOff’
3 days 13 hours ago
Coordinated action by FBI, Europol and others seizes infrastructure, makes arrests – and sends warning letters to known DDoS service users
US Nationals Jailed for Operating Fake Remote Worker Laptop Farms for North Korea
4 days 9 hours ago
US authorities jail two Americans for aiding North Korean laptop farm scams that infiltrated over 100 firms
APK Malformation Found in Thousands of Android Malware Samples
4 days 9 hours ago
APK malformation tactic now appears in over 3000 Android malware samples evading static analysis
Cookeville Medical Center Notifies Patients After July 2025 Ransomware Attack
4 days 10 hours ago
Tennessee's CRMC notifies over 337,000 patients of Rhysida ransomware breach exposing sensitive data
NIST Drops NVD Enrichment for Pre-March 2026 Vulnerabilities
4 days 12 hours ago
NIST’s National Vulnerability Database will now prioritize enriching new and exploited flaws to address the record growth of reported CVEs
Systemic Flaw in MCP Protocol Could Expose 150 Million Downloads
4 days 15 hours ago
Ox Security claims as many as 200,000 servers are exposed by newly discovered MCP vulnerability
Automotive Ransomware Attacks Double in a Year
4 days 16 hours ago
Halcyon says ransomware now accounts for more than two-fifths of cyber-attacks targeting carmakers
OpenAI Unveils GPT-5.4-Cyber for Improving Cyber Defense With AI
5 days 9 hours ago
OpenAI’s new frontier model focused on cybersecurity comes following Anthropic’s launch of Claude Mythos Preview and Project Glasswing
European Cybersecurity Agency ENISA Seeks Top-Tier Status in CVE Program
5 days 9 hours ago
The EU cybersecurity agency looks to become the third Top-Level Root CVE Numbering Authority, alongside CISA and MITRE
Signed Adware Operation Disables Antivirus Across 23,000 Hosts
5 days 10 hours ago
Huntress uncovers adware deploying AV-killing payloads via signed updates across 23,000 endpoints
Critical Nginx-ui MCP Flaw Actively Exploited in the Wild
5 days 12 hours ago
Critical nginx-ui MCP authentication bypass CVE-2026-33032 actively exploited with CVSS 9.8
AI Companies to Play Bigger Role in CVE Program, Says CISA
5 days 14 hours ago
At VulnCon, Lindsey Cerkovnik, head of vulnerability management at CISA, said AI companies should play a bigger role in vulnerability disclosures in the future
Researchers Spot Surge in Brute-Force Attacks from Middle East
5 days 15 hours ago
Barracuda says 88% of brute-force attempts in Q1 were from the region
Microsoft Fixes Two Zero-Days in April Patch Tuesday
5 days 16 hours ago
Microsoft has patched two zero-day flaws and over 160 others
CISOs Urged to Innovate with Talent Retention as Job Satisfaction Declines
6 days 12 hours ago
A new IANS report claims just 34% of cybersecurity professionals plan to stay put in the next 12 months
Checked
10 hours 27 minutes ago