malware campaigns

Threat actors are increasingly leveraging vulnerabilities in both Windows and Linux server environments to deploy web shells and sophisticated malware, perpetuating an alarming trend in the threat landscape that puts organizational networks at heightened risk. Over the past several months...

When hackers target popular communication platforms, the repercussions ripple far beyond fleeting inconvenience—malicious campaigns can threaten the digital safety of millions. A recent discovery has thrown Discord, the massively popular chat and voice platform, into the cybersecurity spotlight...

As software development increasingly depends on third-party components, the risk landscape for supply-chain threats has never been more dynamic—or more perilous. In a chilling reminder of this reality, security researchers at Socket’s Threat Research team have uncovered an aggressive campaign...

Over the past year, the threat landscape for Windows users has evolved with increasing sophistication, and few examples illustrate this shift better than the rise of Lumma Stealer—a prolific infostealer that has aggressively targeted individuals and organizations across industries. The...

Microsoft's latest Patch Tuesday update for March 2025 has once again put security squarely in the spotlight. In this release, Microsoft has rolled out over 50 security patches that include fixes for six dangerous zero-day vulnerabilities already being exploited in the wild. As always, this...

Microsoft's Patch Tuesday on March 11, 2025, introduced a routine selection of security patches, as is customary with the monthly update cycle. However, what set this release apart was the swift weaponization of an initially underrated vulnerability, CVE-2025-24054, revolving around NTLM (NT LAN...

Microsoft's Patch Tuesday on March 11, 2025, introduced crucial security updates, among them a vulnerability labeled CVE-2025-24054 impacting the NTLM authentication protocol. Though Microsoft initially rated this vulnerability as "less likely" to be exploited, reality quickly contradicted that...

Microsoft's March 2025 Patch Tuesday brought an extensive lineup of bug fixes, but among these was a vulnerability that would quickly escalate into a significant security incident: CVE-2025-24054, an NTLM hash-leaking flaw. While Microsoft initially considered this vulnerability "less likely" to...

Microsoft’s Patch Tuesday in March 2025 introduced a significant security update addressing numerous vulnerabilities. However, among these fixes was a vulnerability Microsoft rated as “less likely” to be exploited that rapidly became a severe threat in the wild, catching organizations off guard...

The cybersecurity community has been jolted into attention by the latest findings from Japan’s National Police Agency (NPA) and the National center of Incident readiness and Strategy for Cybersecurity (NISC), who have jointly sounded the alarm about a particularly sleek campaign from the...

Every time the cybersecurity community thinks they’re getting ahead of attackers, someone comes along and turns a trusted workflow into a digital bear trap. That’s exactly what’s unfolding in the latest campaign orchestrated by Russian threat actors who are gleefully exploiting legitimate...

Cybersecurity experts from Kaspersky uncovered new malware that logs into the YouTube accounts of compromised users and uploads a video to their channel, which distributes RedLine Infostealer. A victim, ideally a PC gamer, finds a YouTube video on cracks, or cheats, for one of their favorite...

Rogue Antivirus Optimized for Windows 7 - PandaLabs came across an interesting Rogueware campaign while researching the ongoing Black(hat) Friday SEO campaign. Unlike the typical Rogueware attack, the cyber criminals behind this one have already optimized the campaign to take advantage of...