Cybersecurity researchers at FortiGuard Labs have identified an active, high-severity phishing campaign targeting users of older Microsoft Office versions.
The attackers’ primary vehicle: malicious Excel attachments sent via email, specifically designed to exploit the long-known vulnerability CVE-2017-0199.
This campaign aims to deliver FormBook, an advanced...
Cybersecurity experts have recently identified a surge in attacks leveraging new, advanced variants of the open-source remote administration tool known as Chaos RAT.
Originally crafted as a legitimate remote management utility, Chaos RAT has been increasingly hijacked by cybercriminals to target Linux and Windows...
In a sophisticated new supply chain attack, threat actors have leveraged both Python’s PyPI and JavaScript’s NPM ecosystems to target developers and administrators on Windows and Linux platforms.
Discovered by researcher Ariel Harush, this campaign deploys typo-squatting and cross ecosystem name confusion techniques that...
A significant vulnerability in SolarWinds Dameware Mini Remote Control (MRC), a popular remote desktop management tool used by enterprises worldwide, was uncovered by security researchers.
The flaw, assigned CVE-2025-26396, allows attackers with local access and a low-privileged account to escalate their privileges to higher levels...
A new ransomware strain, dubbed Lyrix, has been actively targeting Windows systems worldwide, employing a range of advanced evasion techniques that set it apart from earlier ransomware families. Security researchers first identified Lyrix campaigns in late May 2025, noting the malware’s rapid evolution and its...