A sophisticated and ongoing supply chain attack orchestrated by North Korean hackers has targeted software developers using fake job offers and malicious npm packages.
Security researchers from Socket’s Threat Research Team have uncovered a campaign that leverages typosquatted npm packages and social engineering to...
A sophisticated cybercriminal campaign has targeted remote workers by distributing a compromised version of SonicWall’s widely used NetExtender SSL VPN client.
According to a joint investigation by SonicWall and Microsoft Threat Intelligence (MSTIC), threat actors are impersonating SonicWall’s official channels and hosting a hacked...
The United States has become a principal target of hacktivist groups in the digital battleground since the escalation of hostilities between Israel and Iran over the past two weeks.
Following U.S. airstrikes on Iranian nuclear facilities on June 21, pro-Iranian hacktivist collectives have launched a...
Recent cybersecurity research from Unit 42, Palo Alto Networks’ threat intelligence team, has uncovered a sophisticated cybercriminal operation targeting financial organizations across Africa.
Dubbed CL-CRI-1014, this threat cluster has been active since at least July 2023, leveraging a blend of open-source and publicly available...
In a landmark move for cybersecurity, the Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the National Security Agency (NSA), has released a comprehensive guide, Memory Safe Languages: Reducing Vulnerabilities in Modern Software Development, to address one of the most persistent threats in software security:...
In a striking escalation of cybercrime tactics, threat actors are now exploiting the surging popularity of artificial intelligence tools, such as ChatGPT and Luma AI, to weaponize search engine results and deliver advanced malware to unsuspecting victims.
A recent investigation by Zscaler’s ThreatLabz has...