Konni uses spear-phishing ZIP files to deploy EndRAT via KakaoTalk, enabling persistence and data theft, turning victims into ...

Interlock ransomware is actively exploiting CVE-2026-20131 (CVSS 10.0) in Cisco FMC, enabling unauthenticated remote code execution as root.

The hack, which brought ongoing widespread disruption to the company's operations, is thought to be the first major ...

North Korea has engaged in a wide-ranging effort to place remote workers at U.S. companies in order to funnel money back to ...

Researchers from Halcyon told Cybersecurity Dive the Stryker attack impacted all phones and workstations with an Intune base 64 string. Intune is normally used to push software or manage devices that ...

A prolific ransomware group has been exploiting a zero-day vulnerability in a Cisco firewall product since January, according ...

Microsoft releases an out-of-band hotpatch for critical Windows 11 RRAS vulnerabilities that could allow remote code ...

A hacker says they have broken into a ​U.S. platform for searching law enforcement hotline messages and compromised more ...

The FBI and the Justice Department took down two websites linked to the pro-Iranian hacktivist group Handala, which last week hacked medical tech giant Stryker.

Among the websites researchers identified as being used in DarkSword attacks was one with a gov.ua address, according to ...

Read the new Microsoft Cyberattack Series report to learn more about on how deception and trusted tools can enable ...

A sophisticated, state-sponsored operation is embedding fake workers inside unsuspecting companies across North America and Europe.