Russian threat actors exploited ChatGPT to develop Windows-based malware, set up command-and-control (C2) infrastructure, and debug multi-language code.
Qilin began a coordinated campaign between May and June 2025 using Fortinet vulnerabilities CVE-2024-21762 and CVE-2024-55591.
In brief: a critical vBulletin bug is being exploited in the wild, new destructive PathWiper malware targets Ukraine, and more.
PathWiper shares several characteristics with Sandworm's HermeticWiper, which was used in attacks against Ukraine in 2022.
It is estimated that the operation generated more than $17 million in revenue since launching in March 2022.
The attackers contact English-speaking employees while impersonating IT support personnel.
The GitHub account ‘ischhfd83,’ which published Sakura RAT, was linked to a broader malware distribution network spanning 141 repos.
Some of the fake DocuSign pages deploy a deceptive CAPTCHA verification process.
The breach came to light when a TaskUs employee was caught photographing her computer screen with a personal device.
The researchers found that native Android apps silently listen on fixed local ports for tracking purposes.
Showing elements 571 - 580