Ransomware actors are ditching Cobalt Strike in favor of native Windows tools, as payment rates hit record lows and data ...

In an unsuccessful phishing attack, threat actors leveraged trusted brands to try to redirect a C-suite executive at Outpost24 to give up his credentials.

Credential theft soared in the second half of 2025, thanks in part to the industrialization of infostealer malware and AI-enabled social engineering.

In a recent attack, the group showcased stealthier cross-network activity, thanks to its use of a new BYOVD technique and other tools.

Researchers uncovered an extensive cyber espionage campaign that used novel backdoors and familiar evasion techniques to maintain persistent access.

The infamous GlassWorm malware has infected dozens more Open VSX software packages, according to new research.

A social engineering campaign impersonating PayPal and Amazon uses customer support interactions to acquire sensitive info.

The dirty secret of critical infrastructure and manufacturing isn't that we are "behind" on patching. It's that patching is ...

With StrongDM's product portfolio, Delinea will be able to offer privilege access management across cloud, SaaS, Kubernetes, ...

With rapid advances in AI, we now enter an era of automated risk remediation. Read about readiness to leverage agentic AI for ...

Phishing dominates as the most prevalent smartphone security issue, and users need to stay alert, Omdia research shows.

Rescinded sanctions and reactivated contracts have created confusion about the Trump administration's spyware policy and where it draws the line.