Google Confirms Workspace Accounts Impacted in Salesforce–Salesloft Drift Data Theft Campaign

Google has confirmed that a recent data theft campaign, which primarily targeted Salesforce customers through [...]

ScarCruft Deploys RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics

Cybersecurity researchers have uncovered a new phishing operation conducted by the North Korea-linked hacking group [...]

High-Risk SQL Injection Vulnerability Found in WordPress Membership Plugin

A critical security flaw has been identified in the WordPress Paid Membership Subscriptions plugin, a [...]

WhatsApp Addresses Zero-Click Spyware Exploit Targeting Apple Devices

WhatsApp announced on Friday that it has patched a critical security flaw in its iOS [...]

Android Droppers Expand Beyond Banking Trojans, Now Delivering SMS Stealers and Spyware

Cybersecurity experts have identified a new shift in the Android malware ecosystem, where dropper apps—traditionally [...]

Law Enforcement Dismantles VerifTools Fake ID Marketplace

Authorities in the United States and the Netherlands have successfully taken down VerifTools, a major [...]

North Korean Hackers Exploit Seoul Intelligence Files in Targeted Cyberattacks

A new large-scale spear-phishing campaign has been uncovered, targeting South Korean government officials and intelligence [...]

Nevada Confirms Ransomware Attack Behind Statewide Service Disruptions

Nevada officials have confirmed that the recent, days-long disruption of state services was the result [...]

Amazon Disrupts APT29 Watering Hole Campaign Exploiting Microsoft Device Code Authentication

Amazon has announced that it successfully identified and disrupted a watering hole campaign attributed to [...]

Netherlands Confirms Salt Typhoon Targeted Small Dutch Telecom Providers

Dutch intelligence services have confirmed that the Chinese-backed hacking group Salt Typhoon has carried out [...]