new!

  • Imagine sipping your morning coffee, scrolling through your inbox, when a seemingly innocent ProtonMail message catches your eye. But this isn’t your typical email—it’s a credential-harvesting attempt targeting specific cloud services. Today, cybercriminals are not just focusing on well-known platforms like DocuSign and Microsoft. They’re expanding their reach, exploiting a variety of cloud apps such…

    Read More

  • Oracle has officially released VirtualBox 7.1.6 on January 21, 2025, bringing a host of bug fixes, performance improvements, and added support for newer operating systems. This release is part of the ongoing 7.1 branch and focuses on refining the VirtualBox experience across various platforms. Here’s a look at the highlights of this maintenance update. VirtualBox…

    Read More

  • Immigration officials can raid churches and schools to arrest undocumented immigrants after the Trump administration scrapped a policy that protected sensitive spaces.The big picture: President Trump has promised aggressive immigration crackdowns, and the latest directive signals the Department of Homeland Security will consider operations at sites previously deemed off-limits.”Criminals will no longer be able to…

    Read More

  • Murdoc Botnet Uses Over 100 Distinct C2 Servers to Manage Infected DevicesA new variant of the Mirai malware is exploiting vulnerabilities in cameras and routers to infiltrate devices, download payloads and integrate them into an expanding botnet. Qualys tracked over 1,300 active internet protocol addresses linked to the Murdoc Botnet since its emergence in July…

    Read More

  • Murdoc Botnet Uses Over 100 Distinct C2 Servers to Manage Infected DevicesA new variant of the Mirai malware is exploiting vulnerabilities in cameras and routers to infiltrate devices, download payloads and integrate them into an expanding botnet. Qualys tracked over 1,300 active internet protocol addresses linked to the Murdoc Botnet since its emergence in July…

    Read More

  • Prompt Security enhances AI security platform, HPE investigates a potential IntelBroker breach and more.

    Read More

  • Researchers warn of a campaign exploiting AVTECH IP cameras and Huawei HG532 routers to create a Mirai botnet variant called Murdoc Botnet. Murdoc Botnet is a new Mirai botnet variant that targets vulnerabilities in AVTECH IP cameras and Huawei HG532 routers, the Qualys Threat Research Unit reported. The botnet has been active since at least…

    Read More

  • Microsoft has announced the release of Windows 11 Insider Preview Build 27774 to the Canary Channel. This build comes packed with enhancements, including a significant new feature aimed at bolstering system security—Administrator Protection. The highlight of this update is the newly integrated Administrator Protection, which can now be activated directly from the Windows Security settings…

    Read More

  • In early January 2025, a new ransomware strain identified as Contacto surfaced, showcasing advanced techniques designed to bypass conventional security measures. This analysis provides insights into its operational mechanisms, particularly suited for professionals venturing into ransomware analysis. Operational Mechanisms Upon execution, Contacto ransomware employs the GetConsoleWindow() and ShowWindow() functions to retrieve and conceal its command…

    Read More

  • The Open Web Application Security Project (OWASP) has released its updated Smart Contract Top 10 for 2025, providing essential insights for developers and security teams in the rapidly evolving Web3 environment. This document outlines the most pressing vulnerabilities found in smart contracts, serving as a crucial resource for maintaining security and protecting against exploitation. OWASP’s new release…

    Read More

  • Microsoft has unveiled a groundbreaking security feature called Administrator Protection, now available to Windows Insiders in the Canary Channel with the release of Windows 11 Insider Preview Build 27774.  This feature, designed to strengthen system security, introduces a new approach to managing administrative privileges, addressing long-standing vulnerabilities in Windows systems. What Is Administrator Protection? Administrator…

    Read More

  • Non-profit organization MITRE launched D3FEND 1.0, a cybersecurity ontology aimed at standardizing the vocabulary for countering cyber threats. Funded by the National Security Agency (NSA), the Cyber Warfare Directorate in the U.S. Office of the Under Secretary of Defense for Acquisition and Sustainment, and the U.S. Office of the Under Secretary of Defense for Research…

    Read More

  • President Trump took the first step toward rolling back protections for transgender people on Monday, signing an executive order that the federal government would only recognize two sexes, male and female.Why it matters: Trump made attacks on transgender individuals central to his 2024 campaign, and by issuing the executive order on his first day in…

    Read More

  • When performing triage on a Linux system you suspect might be compromised, there are many aspects of the system that you may want to look at. In SANS FOR577, we talk about some existing tools and even writing your own bash script to collect triage data. In a case I worked a year or so…

    Read More

  • When performing triage on a Linux system you suspect might be compromised, there are many aspects of the system that you may want to look at. In SANS FOR577, we talk about some existing tools and even writing your own bash script to collect triage data. In a case I worked a year or so…

    Read More

  • The Asus RT-BE86U is loaded with security tools, letting you enjoy the next generation of high-speed internet safely.

    Read More

  • The Asus RT-BE86U is loaded with security tools, letting you enjoy the next generation of high-speed internet safely.

    Read More

  • Malicious emails under the guise of a U.S. government official sought to lure individuals part of the government and diplomacy sectors into joining a WhatsApp group on non-governmental initiatives for Ukraine NGOs through a shortened link that redirected to a webpage seeking a QR code scan.

    Read More

  • A Russian software developer, aided by the National Technology Initiative, has introduced a groundbreaking AI module designed to monitor and analyze content on Telegram. Known as the Apparatus Sapiens AI module, this innovative tool can search through both open and closed chats, communities, and groups on the messaging platform, identifying potentially malicious content at an…

    Read More

  • Read More