Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco Secure Firewall Management Center software, as a zero-day vulnerability more than a month before Cisco patched the hole, ...

There are times when you just don’t want to use your real email address and that’s when sites like IncognitoMail come in handy. This ad-free service lets you create disposable email addresses to stay ...

Ransomware actors are ditching Cobalt Strike in favor of native Windows tools, as payment rates hit record lows and data theft surges.

Windows 11 now lets users choose their default user folder name during setup. The new OOBE option fixes the 5-letter folder issue.

Trump PAC email promises donors "private national security briefings." It also uses a photo of a dead soldier's casket and ...

A fake $TEMU crypto airdrop uses the ClickFix trick to make victims run malware themselves and quietly installs a remote-access backdoor.

Clickfix attacks surged 500% in early 2025. Cybercriminals now use AI in BEC scams. AI is making phishing harder to detect. Cybercriminals are shifting their techniques to focus on the human element, ...

Starting June 1, Microsoft will stop sending Teams meeting recording expiration emails. New settings let admins re-enable ...

For more than a year, a Russian-speaking threat actor targeted human resource (HR) departments with malware that delivers a new EDR killer named BlackSanta.

ESET researchers document how the Sednit APT group has reemerged with a modern toolkit centered on two paired implants – BeardShell and Covenant.

After several years of using simple implants, the Russia-affiliated threat actor is back with two new sophisticated malware tools.

Unwitting victims are now being tricked into installing malware via Windows Terminal, but some experts say this is old news.