Over 250 legitimate websites, including news outlets and a US Senate candidate’s official webpage, been compromised to infect visitors with infostealers, warn Rapid7 researchers
BlackSanta malware targets HR staff with fake resumes, kills EDR and steals system data
A bank, an airport, a non-profit and the Israeli branch of a US software company were among the targets of this new MuddyWater campaign
Malware campaign uses Ukrainian email service for credibility, deploying "BadPaw" to execute attacks
Chainalysis reveals a big surge in median ransomware payment size in 2025 despite overall drop in criminal revenue
UNC2814 hit 53 victims in 42 countries with novel backdoor in decade long cyber espionage operation
Ransomware Medusa linked to North Korean hackers targets US healthcare amid ongoing attacks
Supply chain worm mimicking Shai-Hulud malware spread via malicious npm packages, targeting AI tools has been identified by security researchers
Sophisticated Python malware uncovered in fraud probe shows obfuscation, disposable infrastructure
Advantest, a Japanese specialist in testing computer chips for major semiconductor manufacturers, has deployed incident response protocols following a cybersecurity incident
University of Mississippi Medical Center is still scrambling to respond to a ransomware attack last Thursday
A new Android malware implant using Google Gemini to perform persistence tasks was discovered on VirusTotal and analyzed by ESET
Dragos annual report warns of a surge in ransomware attacks causing increased operational disruption in industrial environments
OysterLoader malware evolves into 2026, refining C2 infrastructure, obfuscation & infection stages
Accenture Cybersecurity warns over difficult to detect, “sophisticated toolset” being deployed as part of extortion campaigns
Campaign combines stolen Telegram accounts, fake Zoom calls and ClickFix attacks to deploy infostealer malware
High-volume phishing campaign delivers Phorpiex malware via malicious Windows Shortcut files
ZeroDayRAT is a new mobile spyware targeting Android and iOS, offering attackers persistent access
NCSC call firms to ‘act now’ following disruptive malware attacks targeting Polish energy providers
The services of Florida-based payments platform BridgePay are offline due to a ransomware attack