Saturday, February 14

Browsing: News

News

You Didn’t Get Phished — You Onboarded the Attacker

Team-CWDSeptember 15, 2025

When Attackers Get Hired: Today’s New Identity Crisis What if the star engineer you just hired isn’t actually an employee,…

News

AI-Forged Military IDs Used in North Korean Phishing Attack

Team-CWDSeptember 15, 2025

A North Korean threat actor has leveraged AI to create fake South Korean military agency ID card images used in…

News

Noisy Bear Campaign Targeting Kazakhstan Energy Sector Outed as a Planned Phishing Test

Team-CWDSeptember 15, 2025

A threat actor possibly of Russian origin has been attributed to a new set of attacks targeting the energy sector…

News

CISA at Risk After OIG Accuses it of Wasting Federal Funds

Team-CWDSeptember 15, 2025

The US Cybersecurity and Infrastructure Security Agency (CISA) wasted taxpayers’ money and imperilled its mission to protect the nation from…

News

Malicious npm Packages Impersonate Flashbots, Steal Ethereum Wallet Keys

Team-CWDSeptember 15, 2025

A new set of four malicious packages have been discovered in the npm package registry with capabilities to steal cryptocurrency…

News

CISA Orders Immediate Patch of Critical Sitecore Vulnerability Under Active Exploitation

Team-CWDSeptember 15, 2025

Federal Civilian Executive Branch (FCEB) agencies are being advised to update their Sitecore instances by September 25, 2025, following the…

News

TAG-150 Develops CastleRAT in Python and C, Expanding CastleLoader Malware Operations

Team-CWDSeptember 14, 2025

The threat actor behind the malware-as-a-service (MaaS) framework and loader called CastleLoader has also developed a remote access trojan known…

News

SAP S/4HANA Critical Vulnerability CVE-2025-42957 Exploited in the Wild

Team-CWDSeptember 14, 2025

A critical security vulnerability impacting SAP S/4HANA, an Enterprise Resource Planning (ERP) software, has come under active exploitation in the…

News

Automation Is Redefining Pentest Delivery

Team-CWDSeptember 14, 2025

Pentesting remains one of the most effective ways to identify real-world security weaknesses before adversaries do. But as the threat…

News

VirusTotal Finds 44 Undetected SVG Files Used to Deploy Base64-Encoded Phishing Pages

Team-CWDSeptember 14, 2025

Cybersecurity researchers have flagged a new malware campaign that has leveraged Scalable Vector Graphics (SVG) files as part of phishing…

What's Hot

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Claude Opus 4.6 Finds 500+ High-Severity Flaws Across Major Open-Source Libraries

AISURU/Kimwolf Botnet Launches Record-Setting 31.4 Tbps DDoS Attack

Browsing: News

You Didn’t Get Phished — You Onboarded the Attacker

AI-Forged Military IDs Used in North Korean Phishing Attack

Noisy Bear Campaign Targeting Kazakhstan Energy Sector Outed as a Planned Phishing Test

CISA at Risk After OIG Accuses it of Wasting Federal Funds

Malicious npm Packages Impersonate Flashbots, Steal Ethereum Wallet Keys

CISA Orders Immediate Patch of Critical Sitecore Vulnerability Under Active Exploitation

TAG-150 Develops CastleRAT in Python and C, Expanding CastleLoader Malware Operations

SAP S/4HANA Critical Vulnerability CVE-2025-42957 Exploited in the Wild

Automation Is Redefining Pentest Delivery

VirusTotal Finds 44 Undetected SVG Files Used to Deploy Base64-Encoded Phishing Pages

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Securi

North Korean Hackers Exploit Threat Intel Platforms For Phishing

U.S. Treasury Sanctions DPRK IT-Worker Scheme, Exposing $600K Crypto Transfers and $1M+ Profits

Ukrainian Ransomware Fugitive Added to Europe’s Most Wanted

Most Popular

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Securi

North Korean Hackers Exploit Threat Intel Platforms For Phishing

Our Picks

Don’t let “back to school” become “back to bullying”

Look out for phony verification pages spreading malware

Top IRS scams to look out for in 2026

Subscribe to Updates

What's Hot

Browsing: News

Subscribe to Updates