Blog

Exposed MongoDB instances continue to be actively targeted in automated data extortion campaigns, with attackers demanding relatively small Bitcoin ransoms in exchange for alleged data restoration. Despite years of warnings and prior large-scale incidents, misconfigured databases remain a persistent and…

Read More

A large-scale Android malware campaign has been uncovered that abuses Hugging Face as a distribution channel for thousands of malicious APK variants designed to steal credentials from popular financial and payment services. The operation highlights how trusted developer platforms are…

Read More

An authentication bypass vulnerability in SmarterTools’ SmarterMail email server is now being actively exploited, allowing attackers to reset administrator passwords and take full control of affected systems. The flaw enables unauthenticated threat actors to hijack admin accounts and achieve complete…

Read More

An authentication bypass vulnerability in SmarterTools’ SmarterMail email server is now being actively exploited, allowing attackers to reset administrator passwords and take full control of affected systems. The flaw enables unauthenticated threat actors to hijack admin accounts and achieve complete…

Read More

Microsoft has begun automatically rotating expiring Secure Boot certificates on eligible systems running Windows 11 versions 24H2 and 25H2, marking a critical step in maintaining platform integrity and pre-boot security across modern Windows environments. Secure Boot certificate lifecycle and security…

Read More

Hackers are claiming to be in possession of internal source code belonging to Target Corporation, after publishing what appears to be a limited sample of private repositories on a public software development platform. The incident has drawn significant attention within…

Read More

WebRAT malware is actively being distributed through malicious GitHub repositories that masquerade as proof-of-concept (PoC) exploits for recently disclosed vulnerabilities. This campaign highlights a growing trend in which threat actors weaponize public vulnerability disclosures and developer trust in open-source platforms…

Read More

SoundCloud has officially confirmed that recent service disruptions and widespread VPN access issues were the result of a cybersecurity breach that led to the unauthorized access and theft of user data. The incident involved the exposure of a database containing…

Read More

A new threat campaign tied to Russian cyber actors is weaponizing malicious Blender model files to deliver the StealC V2 information-stealing malware, targeting creators who download assets from popular 3D marketplaces such as CGTrader. The campaign leverages Blender’s built-in scripting…

Read More