Researchers have uncovered GlassWorm, a self-propagating worm that spreads through compromised Visual Studio Code extensions on the Open VSX Registry and the Microsoft Extension Marketplace
Microsoft has released an out-of-band security update to address a critical remote code execution (RCE) vulnerability in Windows Server Update Services
Microsoft has announced a new security change for Windows File Explorer, disabling the preview feature for files downloaded from the internet as an added layer of protection
A new report by Recorded Future reveals that Russian cybercriminals are no longer merely tolerated by state authorities—they are now actively managed as extensions of national power
Verizon’s 2025 Mobile Security Index (MSI) highlights a sharp rise in mobile threats and growing concerns about AI-assisted cyberattacks
A European telecommunications organization was recently targeted by a China-linked cyber espionage group known as Salt Typhoon
Envoy Air, a regional carrier owned by American Airlines, has confirmed that it was affected by the recent Oracle E-Business Suite (EBS) exploitation campaign
Peer-to-peer lending platform Prosper has confirmed a significant data breach affecting an estimated 17.6 million users
A cybercriminal group calling itself Scattered LAPSUS$ Hunters has reportedly leaked millions of records allegedly stolen from multiple Salesforce customers
Harvard University has become the first confirmed victim of the ongoing cybercrime campaign targeting Oracle’s E-Business Suite
Security researchers have discovered multiple malicious packages in the npm, PyPI, and RubyGems ecosystems that use Discord webhooks as a lightweight command-and-control
Security researchers have disclosed a new Rust-based backdoor called ChaosBot that enables attackers to perform reconnaissance and execute arbitrary commands on compromised Windows hosts
