Internet Security

Google GTIG: 90 zero-day flaws exploited in 2025 as enterprise targets grow

March 6, 2026 add comment
Google’s GTIG reports 90 zero-day vulnerabilities exploited in the wild in 2025, up from 78 in 2024, with a growing share targeting enterprise systems. Google’s Threat Intelligence Group (GTIG)... Read more »

Phobos Ransomware admin faces up to 20 years after guilty plea

March 5, 2026 add comment
Russian national Evgenii Ptitsyn (43) pleaded guilty in the U.S. for his role in the Phobos ransomware operation. Russian national Evgenii Ptitsyn pleaded guilty in the US to wire... Read more »

Russian APT targets Ukraine with BadPaw and MeowMeow malware

March 5, 2026 add comment
Researchers uncovered a Russian campaign targeting Ukrainian entities with new malware families BadPaw and MeowMeow delivered through phishing emails. Researchers reported a phishing campaign linked to Russia that targets... Read more »

Operation Leak: FBI and Europol dismantle LeakBase Cybercrime forum

March 5, 2026 add comment
The Federal Bureau of Investigation seized the LeakBase cybercrime forum in an international crackdown led by Europol. The Federal Bureau of Investigation seized the LeakBase cybercrime forum (leakbase[.]la), a... Read more »

Google uncovers Coruna iOS Exploit Kit targeting iOS 13–17.2.1

March 5, 2026 add comment
Google warns of the Coruna iOS exploit kit, using 23 exploits across five chains to target iPhones running iOS 13–17.2.1, but not the latest iOS. Google’s Threat Intelligence Group... Read more »

Cisco fixes maximum-severity Secure FMC bugs threatening firewall security

March 4, 2026 add comment
Cisco patched two critical Secure FMC vulnerabilities that could let attackers gain root access to managed firewalls. Cisco addressed two maximum-severity vulnerabilities in its Secure Firewall Management Center (FMC)... Read more »

Automate or orchestrate? Implementing a streamlined remediation program to shorten MTTR

March 4, 2026 add comment
Security teams want lower MTTR, but flaws persist. How to use automation vs. orchestration to reduce risk effectively? Almost all security teams want to reduce their Mean Time to... Read more »

LastPass warns of spoofed alerts aimed at stealing master passwords

March 4, 2026 add comment
LastPass warns of a phishing campaign using fake security alerts about unauthorized access or password changes to steal users’ master passwords. LastPass has warned users about a new phishing... Read more »

From phishing to Google Drive C2: Silver Dragon expands APT41 playbook

March 4, 2026 add comment
APT group Silver Dragon, linked to APT41, targets governments via server exploits and phishing, using Cobalt Strike and Google Drive for C2. Check Point researchers have identified Silver Dragon,... Read more »

U.S. CISA adds Qualcomm and Broadcom VMware Aria Operations flaws to its Known Exploited Vulnerabilities catalog

March 4, 2026 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Qualcomm and Broadcom VMware Aria Operations flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Google... Read more »
Subscribe to our Newsletter