Internet Security

New LightSpy spyware variant comes with enhanced data collection features targeting social media platforms

February 26, 2025 add comment
Researchers found an updated LightSpy spyware with enhanced data collection features targeting social media platforms like Facebook and Instagram. Cybersecurity researchers at Hunt.io have found an updated version of... Read more »

U.S. CISA adds Microsoft Partner Center and Synacor Zimbra Collaboration Suite flaws to its Known Exploited Vulnerabilities catalog

February 26, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft Partner Center and Synacor Zimbra Collaboration Suite vulnerabilities to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency... Read more »

GitVenom campaign targets gamers and crypto investors by posing as fake GitHub projects

February 26, 2025 add comment
GitVenom malware campaign targets gamers and crypto investors by posing as open-source projects on GitHub. Kaspersky researchers warn of a malware campaign, dubbed GitVenom, targeting GitHub users. The threat... Read more »

LockBit taunts FBI Director Kash Patel with alleged “Classified” leak threat

February 25, 2025 add comment
LockBit claims to have “classified information” for FBI Director Kash Patel that could “destroy” the agency if leaked. The ransomware gang LockBit sent a strange message to newly appointed... Read more »

EU sanctioned the leader of North Korea-linked APT groups

February 25, 2025 add comment
The European Union sanctioned the leader of North Korea-linked APT groups for aiding Russia in its war against Ukraine. The European Union announced sanctions against entities aiding Russia in... Read more »

U.S. CISA adds Adobe ColdFusion and Oracle Agile PLM flaws to its Known Exploited Vulnerabilities catalog

February 25, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Adobe ColdFusion and Oracle Agile Product Lifecycle Management (PLM) vulnerabilities to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security... Read more »

Russia warns financial sector organizations of IT service provider LANIT compromise

February 25, 2025 add comment
Russia’s NKTsKI warns financial sector organizations about a breach at major Russian IT service and software provider LANIT. Russia’s National Coordination Center for Computer Incidents (NKTsKI) warns the financial... Read more »

A large botnet targets M365 accounts with password spraying attacks

February 24, 2025 add comment
A botnet of 130,000+ devices is attacking Microsoft 365 accounts via password-spraying, bypassing MFA by exploiting basic authentication. SecurityScorecard researchers discovered a botnet of over 130,000 devices that is... Read more »

A data leak exposes the operations of the Chinese private firm TopSec, which provides Censorship-as-a-Service

February 24, 2025 add comment
A leak suggests that Chinese cybersecurity firm TopSec offers censorship-as-a-service services, it provided bespoke monitoring services to a state-owned enterprise facing a corruption scandal. SentinelLABS researchers analyzed a data... Read more »

Australia bans Kaspersky over national security concerns

February 24, 2025 add comment
Australia bans Kaspersky software over national security concerns, citing risks of foreign interference, espionage, and sabotage of government networks. Australian Government banned products and services provided by Russian cybersecurity... Read more »
Subscribe to our Newsletter