The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning regarding a server-side request forgery vulnerability in Synacor's Zimbra Collaboration Suite (ZCS) that has been confirmed as exploited in active attacks.
The vulnerability, tracked as CVE-2019-9621, has been added to CISA's Known...
The Parrot Security team has officially released Parrot OS 6.4, marking what will likely be the final version of the 6.x branch before the transition to Parrot 7.0.
This latest iteration brings significant updates to core penetration testing tools, kernel improvements, and enhanced system...
In the ever-shifting landscape of cybercrime, XWorm, a notorious remote access trojan (RAT), continues to evolve, arming threat actors with fresh tactics to bypass modern security defenses.
The Splunk Threat Research Team (STRT) has recently dissected a wave of new XWorm campaigns, revealing a...
Elastic Security Labs has sounded the alarm after uncovering multiple active infostealer campaigns leveraging the commercial AV/EDR evasion framework SHELTER for malicious purposes.
Once marketed exclusively to offensive security professionals for red team simulation, SHELTER is now being abused by threat actors to bypass...
A notorious cybercriminal group operating under the name Scattered Spider (also known as UNC3944, Scatter Swine, and Muddled Libra) has escalated its tactics, broadening its targets to include major enterprises in the retail, finance, and airline sectors.
Recent high-profile breaches underscore how the group...
In a concerning trend for Windows users and the broader cybersecurity landscape, cybercriminals are increasingly leveraging legitimate software installation frameworks such as Inno Setup to distribute potent malware strains.
Once trusted as a staple for streamlined, user-friendly application deployment, these installer packages are now...