What Attackers Are Doing With Them
When an organization’s credentials are leaked, the immediate consequences are rarely visible—but the long-term impact is far-reaching. Far from the…
GreedyBear Steals $1M in Crypto Using 150+ Malicious Firefox Wallet Extensions
A newly discovered campaign dubbed GreedyBear has leveraged over 150 malicious extensions to the Firefox marketplace that are designed to…
SonicWall Confirms Patched Vulnerability Behind Recent VPN Attacks, Not a Zero-Day
î ‚Aug 07, 2025î „Ravie LakshmananNetwork Security / Vulnerability SonicWall has revealed that the recent spike in activity targeting its Gen 7…
6,500 Axis Servers Expose Remoting Protocol; 4,000 in U.S. Vulnerable to Exploits
î ‚Aug 07, 2025î „Ravie LakshmananVulnerability / Threat Intelligence Cybersecurity researchers have disclosed multiple security flaws in video surveillance products from Axis…
Microsoft Discloses Exchange Server Flaw Enabling Silent Cloud Access in Hybrid Setups
î ‚Aug 07, 2025î „Ravie LakshmananVulnerability / Threat Detection Microsoft has released an advisory for a high-severity security flaw affecting on-premise versions…
SocGholish Malware Spread via Ad Tools; Delivers Access to LockBit, Evil Corp, and Others
î ‚Aug 07, 2025î „Ravie LakshmananMalware / Threat Intelligence The threat actors behind the SocGholish malware have been observed leveraging Traffic Distribution…
What 2025 Is Teaching Us About Cloud Defense
Now that we are well into 2025, cloud attacks are evolving faster than ever and artificial intelligence (AI) is both…
Malicious Go, npm Packages Deliver Cross-Platform Malware, Trigger Remote Data Wipes
î ‚Aug 07, 2025î „Ravie LakshmananMalware / Threat Intelligence Cybersecurity researchers have discovered a set of 11 malicious Go packages that are…
How to Stop Python Supply Chain Attacks—and the Expert Tools You Need
î ‚Aug 07, 2025î „The Hacker NewsDevSecOps / Supply Chain Security Python is everywhere in modern software. From machine learning models to…
Researchers Uncover ECScape Flaw in Amazon ECS Enabling Cross-Task Credential Theft
î ‚Aug 06, 2025î „Ravie LakshmananDevOps / Container Security Cybersecurity researchers have demonstrated an “end-to-end privilege escalation chain” in Amazon Elastic Container…