Dangerous DNS malware infects over 30,000 websites - so be on your guard

Security researchers have spotted an enormous malware campaign which managed to quietly compromise more than 30,000 websites, ...

Zero-day lets nation-state spies cross-examine elite US law firm Williams & Connolly

Washington's elite law firm Williams & Connolly has confirmed that attackers exploited a zero-day vulnerability to access a ...
The Hacker News

⚡ Weekly Recap: Oracle 0-Day, BitLocker Bypass, VMScape, WhatsApp Worm & More

Your weekly snapshot of cyber chaos: from Oracle 0-Day exploits to fresh spyware, phishing kits, and ransomware twists—here’s ...

Crimson Collective hackers target AWS cloud instances for data theft

The 'Crimson Collective' threat group has been targeting AWS (Amazon Web Services) cloud environments for the past weeks, to ...
GovInfoSecurity

Hackers Exploit RMM Tools to Deploy Malware

Cybercriminals are hijacking trusted remote monitoring and management tools to bypass defenses, gain persistent access and ...
The Hacker News

ThreatsDay Bulletin: MS Teams Hack, MFA Hijacking, $2B Crypto Heist, Apple Siri Probe & More

Cyber threats evolve fast—blending AI, social engineering, and cloud attacks. Stay informed with practical insights to build ...
CSO Online

Open-source monitor turns into an off-the-shelf attack beacon

Hackers used log poisoning and web shells to convert Nezha into a remote access tool targeting networks across East Asia.
Cloud Security Alliance

When OAuth Tokens Go Rogue: Lessons from the Salesloft–Drift Breach

A look at the Salesloft-Drift OAuth breach, how token misuse bypassed MFA, and steps to strengthen SSPM and ITDR in SaaS ...