A massive coordinated campaign targeting Microsoft Remote Desktop Protocol (RDP) services, with nearly 2,000 malicious IP addresses conducting simultaneous reconnaissance attacks against authentication portals.
The unprecedented surge represents a 400-fold increase from normal baseline activity and signals potential preparations for large-scale credential-based attacks on...
A detailed proof-of-concept exploit and vulnerability analysis for CVE-2025-43300, a critical zero-click remote code execution vulnerability affecting Apple devices.
The vulnerability, which Apple acknowledges may have been exploited in sophisticated targeted attacks, represents one of the most dangerous iOS vulnerabilities discovered in recent years.
CVE-2025-43300...
A sophisticated social engineering operation by the Black Basta ransomware group has exposed critical vulnerabilities in remote access security, with cybercriminals successfully compromising enterprise systems in under five minutes using nothing more than phone calls and Microsoft's own support tools.
NCC Group's Digital Forensics and...
Google has confirmed that cybercriminals successfully breached one of its Salesforce database instances in June 2024, becoming the latest high-profile victim in an ongoing campaign targeting cloud-based customer relationship management systems.
The tech giant disclosed the incident on August 5, 2025, revealing that hackers...
In its ongoing fight against online fraud, WhatsApp today unveiled a suite of new tools and insights designed to help users recognize and avoid scam attempts within private and group chats.
These features complement the platform’s recent takedown of more than 6.8 million scam-linked...
In a new wave of mobile threats, security researchers have uncovered LunaSpy, a sophisticated Android spyware masquerading as legitimate antivirus and banking protection tools.
Since emerging in late February 2025, LunaSpy has been distributed via messaging platforms such as Telegram and WhatsApp, duping users...