Security Intelligence

New ‘StilachiRAT’ found scurrying in crypto wallets

Microsoft identifies new, sophisticated remote access trojan (RAT) dubbed StilachiRAT.

Security Intelligence

Meow-ware alert: Attackers pounce on Tomcat flaw

Critical RCE flaw discovered in Apache Tomcat, allowing attackers to gain complete control over servers using a simple...

Security Intelligence

Another threat actor uses ‘ClickFix’ technique to deploy malware

An unknown threat actor has been observed leveraging social engineering tactic ClickFix to distribute the open-source...

Security Intelligence

Storm-1865 leverages ‘ClickFix’ technique in new phishing campaign

Microsoft has identified an ongoing Storm-1865 phishing campaign targeting the hospitality industry by masquerading as...

Security Intelligence

Fortinet flaws targeted by new LockBit-like SuperBlack ransomware

New ransomware group exploits authentication bypass vulnerabilities in Fortinet's security appliances to deploy custom...

Security Intelligence

Severe flaw found in FreeType library used by millions of systems

Vulnerability found in FreeType, a popular open-source font rendering library installed on millions of Linux & Android...

Security Intelligence

China-linked threat actor deploys backdoors, rootkits on Junos OS routers

A China-linked threat actor has been observed targeting end-of-life (EoL) Juniper Networks routers to install several...

Security Intelligence

Microsoft Patch Tuesday addresses six actively exploited zero-days

As part of its monthly ‘Patch Tuesday’ event, Microsoft fixes 57 vulnerabilities, including six actively exploited...

Security Intelligence

Apple issues emergency update for ‘extremely sophisticated’ zero-day exploitation

Apple releases emergency update to address a zero-day vulnerability affecting many of its iPhones, iPads, Apple Vision...

Security Intelligence

New Ballista botnet targets vulnerabilities in popular TP-Link routers

Security researchers identify new botnet consisting of residential-grade TP-Link Archer routers

Security Intelligence

Ivanti EPM, VeraCore flaws added to CISA KEV catalog

CISA adds five security vulnerabilities affecting software from affecting Advantive VeraCore and Ivanti Endpoint...

Security Intelligence

Pro-Palestine group hits X with massive DDoS attack

Social media platform X (formerly Twitter) experiences significant disruptions attributed to a massive cyberattack.