Evasive Panda Strikes Tibetan Users
ESET has uncovered a sophisticated cyber campaign orchestrated by the China-linked threat actor, Evasive Panda, targeting Tibetan users since September 2023.
ESET has uncovered a sophisticated cyber campaign orchestrated by the China-linked threat actor, Evasive Panda, targeting Tibetan users since September 2023.
Threat actor ScarCruft, also known as APT37, has launched a new cyber espionage campaign targeting media organizations and experts in North Korean affairs.
Microsoft has issued a warning about a group of Iranian-backed state hackers affiliated with the APT35 Iranian cyberespionage group.
Several state and industrial organizations in Russia fell victim to a custom Go-based backdoor designed for data theft, likely furthering espionage efforts
Chinese state-run hackers have launched an extensive cyberespionage campaign, compromising hundreds of organizations by exploiting a zero-day vulnerability.
Fortinet has released urgent firmware updates for Fortigate devices to address a critical pre-authentication remote code execution (RCE) vulnerability in SSL VPNs
Researchers have identified a privacy risk in Strava's heatmap feature, which could potentially lead to the identification of users' home addresses.
Obsidian has discovered a successful ransomware attack targeting Sharepoint Online through a Microsoft Global SaaS admin account.
Progress Software has issued a warning to its customers about critical SQL injection vulnerabilities discovered in its MOVEit solution.
Researchers have discovered an actively exploited vulnerability in Microsoft Windows, which allows attackers to gain system privileges.