The sophistication of cyberattacks continues to climb, with threat actors now leveraging something as innocuous as academic research papers to infect unsuspecting victims.
The recent discovery by AhnLab Security Intelligence Center (ASEC) highlights a new campaign by the notorious Kimsuky group, which has been targeting...
A highly active cybercriminal group known as "Water Curse" has been found distributing multistage malware through at least 76 weaponized GitHub repositories, posing a severe threat to cybersecurity professionals, game developers, and software engineering teams.
This campaign is notable for its blend of stealth,...
Security researchers continually refine their tactics to detect the latest malware delivery methods.
One increasingly common technique is the use of steganography to hide malicious payloads within seemingly innocuous files, such as images.
This article explores a real-world case where malware was concealed within...
In the first quarter of 2025, cybercriminals launched a large-scale malware campaign targeting holiday bookers by creating fake travel websites that closely mimic Booking.com.
According to HP Wolf Security’s latest Threat Insights Report, these fraudulent sites deploy convincing cookie consent banners required under GDPR...
Recent investigations have revealed a sophisticated cyberattack campaign that leverages Discord’s invite system to distribute malware, with a particular focus on AsyncRAT and a customized Skuld Stealer variant.
The attacks target cryptocurrency holders, gamers, and online communities by exploiting trusted Discord features and employing...
Security researchers from Binarly have uncovered a major software vulnerability in the Unified Extensible Firmware Interface (UEFI) ecosystem, specifically impacting the Secure Boot mechanism used by almost all modern PCs and servers.
Dubbed CVE-2025-3052 (BRLY-2025-001), this memory corruption flaw enables attackers to execute unsigned code...