Security Intelligence

Unpaid toll-themed smishing campaign gives victims no free ‘E-ZPass’

Smishing campaign mimics E-ZPass and other U.S.-based toll agencies and sending fraudulent text messages to individuals.

Security Intelligence

Five Eyes warn threat actors increasing use of ‘fast flux’ technique

Cybercriminals are increasingly using a tactic called “fast flux” to hide their infrastructure and hinder takedown...

Security Intelligence

Zero-day vulnerability in Ivanti Connect Secure exploited for weeks

Ivanti reports suspected Chinese state-sponsored threat actor UNC5221 exploiting zero-day vulnerability in Connect...

Security Intelligence

Max-severity vulnerability discovered in Apache Parquet, patch now

Max severity remote code execution ulnerability, designated CVE-2025-30065, discovered in Apache Parquet.

Security Intelligence

A tale of two CVEs: Dispute over CrushFTP’s recent vulnerability

Confusion ensues after two different CVEs are assigned to the same actively exploited CrushFTP vulnerability.

Security Intelligence

FIN7 delivers Anubis backdoor via compromised SharePoint sites

FIN7 observed deploying its Anubis backdoor to gain unauthorized access to Windows systems.

Security Intelligence

Hidden ‘doggy door’ found in Chinese-made robot dogs

Researchers uncover hidden ‘doggy door’ in China-based Unitree Robotics' Go1 robot dogs.

Security Intelligence

Thunderstruck! Malicious ads for RVTools lead to ThunderShell payload

Field Effect security intelligence tracks malvertising campaign that tricks users into downloading ThunderShell-laced...

Security Intelligence

North Korea’s IT worker scheme expands into Europe

North Korean IT worker scheme expands into Europe and other countries.

Security Intelligence

XinXin group offers new ‘dreamy’ PhaaS platform

Cybersecurity researchers reveal highly sophisticated PhaaS platform, dubbed ‘Lucid’, that has targeted 169...

Security Intelligence

New Crocodilus malware snaps up crypto wallets

Newly discovered Android malware, dubbed Crocodilus, targets cryptocurrency users by stealing their wallet seed phrases

Security Intelligence

Hakuna magotchya! Look out for new Morphing Meerkat PhaaS platform

Researchers identify new phishing-as-a-service (PhaaS) platform, called Morphing Meerkat, that employs DNS over HTTPS...