A new and highly targeted cyberattack campaign has come to light in Poland, with the advanced persistent threat group UNC1151 exploiting a critical vulnerability in the Roundcube webmail platform to steal user credentials and further compromise organizational security.
This latest wave of spear phishing,...
A critical security flaw, identified as CVE-2025-4318, has been discovered in AWS Amplify Studio’s @aws-amplify/codegen-ui package, putting countless Node.js environments at risk of remote code execution.
This vulnerability, which affects versions up to and including 2.20.2, arises from the unfiltered evaluation of user-supplied JavaScript...
A sophisticated and fast-evolving phishing campaign, linked to the prolific threat group “Scattered Spider” (also known as UNC3944 and Octo Tempest), is actively targeting IT helpdesk personnel at technology vendors and managed service providers (MSPs).
Leveraging highly tailored social engineering, advanced phishing kits, and...
A previously unseen wiper malware dubbed “PathWiper” has been detected targeting Ukrainian critical infrastructure, Cisco Talos revealed this week.
The attackers leveraged a legitimate endpoint administration framework typically used for remote IT support turning it into a devastating weapon to unleash destructive malware across the network....
A recent investigation by cybersecurity researchers has revealed a highly stealthy malware distribution campaign abusing the legitimate paste.ee service as a command-and-control (C&C) hub.
The attackers use advanced obfuscation techniques in JavaScript droppers to deliver powerful remote access trojans (RATs) like XWorm and AsyncRAT,...
A team of ESET cybersecurity researchers has unveiled the inner workings of “BladedFeline,” an advanced persistent threat (APT) group attributed to Iranian interests.
Active since at least 2017, BladedFeline has quietly infiltrated networks of the Kurdistan Regional Government (KRG), Iraq’s government, and even a...