The Russia-linked threat actor known as COLDRIVER has been observed evolving its tradecraft to go beyond credential harvesting to deliver its first-ever custom malware written in the Rust programming language.
In 2024, an era where organisations and individuals increasingly operate online, the landscape of cybercrime is evolving rapidly. India, a burgeoning hub for fintech, has experienced a significant surge in cybercrime
Remote desktop software maker AnyDesk disclosed on Friday that it suffered a cyber attack that led to a compromise of its production systems.
What is the difference between Vulnerability Assessment and Penetration Testing?Vulnerability Assessment focuses on identifying and classifying vulnerabilities in a system, while Penetration Testing involves actively exploiting vulnerabilities to assess the real-world impact. How often should VAPT be conducted?The frequency of …
A large-scale cyber attack was launched to steal and market confidential user information, focusing mainly on the APAC region’s employment agencies and retail firms.
Thousands of WordPress sites using a vulnerable version of the Popup Builder plugin have been compromised with a malware called Balada Injector. First documented by Doctor Web in January 2023, the campaign takes place in a series of periodic attack …
The announcement on the dark web portal includes specific details about the targeted organizations.
The threat actor advertises databases containing sensitive customer information on the Breachforums platform.
Cybersecurity researchers have discovered a new Java-based “sophisticated” information stealer that uses a Discord bot to exfiltrate sensitive data from compromised hosts.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday issued an emergency directive urging Federal Civilian Executive Branch (FCEB) agencies to implement mitigations against two actively exploited zero-day flaws in Ivanti Connect Secure (ICS) and Ivanti Policy Secure (IPS) products.