The China-linked group Silk Typhoon has been compromising remote monitoring and management companies and exploits all available public-facing devices. They test and use leaked corporate passwords on public repositories and…

The Hunters International threat actor recently claimed the Tata Technologies ransomware incident. The Indian tech giant said at the time that some of its IT systems were impacted, but customer…

A series of ransomware notes sent via post office claim the compromise of the recipient's corporate IT network. They demand a ransom of $250,000 to $350,000 in Bitcoin, preying on…

Fake emails were recently seen leveraging the DocuSign API in a phishing campaign. Scammers impersonated PayPal via DocuSign’s readily available templates, adding to their credibility. Yet, the emails came from…

The Black Basta and Cactus ransomware groups added the use of BackConnect malware. This addition significantly bolsters their control over compromised systems and enables data exfiltration at a new level…

CISA warns of five exploited flaws, starting with a Cisco router command injection vulnerability. Two target the Hitachi Vantara Pentaho BA server, and one is a Microsoft Windows Win32k bug.…

The Russia-linked Qilin threat actor’s latest claimed victim after a Palau Ministry is a clinic in Japan. The Utsunomiya Central Clinic data breach may have impacted around 300,000 patients. Leaked…