Socket's Threat Research Team has uncovered a significant supply chain security incident involving protestware that has spread across at least 28 new npm packages with nearly 2,000 versions.
The malicious code targets Russian-language users visiting Russian or Belarusian websites, disabling UI interactions and playing...
In recent weeks, U.S. water treatment facilities and other critical infrastructure have come under sustained digital assault attributed to Iranian-linked cyber units.
Security researchers have uncovered evidence that Intelligence Group 13, an advanced persistent threat cell operating within the IRGC’s Shahid Kaveh Cyber Group,...
The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) today sanctioned Song Kum Hyok, a North Korean cyber actor linked to the Democratic People's Republic of Korea (DPRK) Reconnaissance General Bureau's hacking group Andariel, along with a Russia-based network of individuals and entities...
The National Security Bureau (NSB) of Taiwan has issued a critical warning about the cybersecurity risks associated with five widely used Chinese-developed mobile applications: Rednote, Weibo, TikTok, WeChat, and Baidu Cloud.
This announcement follows a comprehensive inspection by the Ministry of Justice Investigation Bureau...
In the ever-shifting landscape of cybercrime, XWorm, a notorious remote access trojan (RAT), continues to evolve, arming threat actors with fresh tactics to bypass modern security defenses.
The Splunk Threat Research Team (STRT) has recently dissected a wave of new XWorm campaigns, revealing a...
In a recent detailed investigation by Trustwave SpiderLabs, the threat group Blind Eagle (APT-C-36) has been linked with the Russian bulletproof hosting provider Proton66.
This group has been actively targeting Latin American organizations, with a pronounced focus on Colombian financial institutions, including Bancolombia, BBVA, Banco Caja Social,...