Security News

YouTube warns of AI-generated video of its CEO used in phishing attacks
2025-03-05 15:27

YouTube warns that scammers are using an AI-generated video featuring the company's CEO in phishing attacks to steal creators' credentials. [...]

Defending against USB drive attacks with Wazuh
2025-03-05 14:08

USB drive attacks constitute a significant cybersecurity risk, taking advantage of the everyday use of USB devices to deliver malware and circumvent traditional network security measures. These...

Toronto Zoo shares update on last year's ransomware attack
2025-03-05 13:36

The Toronto Zoo, the largest zoo in Canada, has provided more information about the data stolen during a ransomware attack in January 2024. [...]

New Eleven11bot botnet infects 86,000 devices for DDoS attacks
2025-03-04 20:10

A new botnet malware named 'Eleven11bot' has infected over 86,000 IoT devices, primarily security cameras and network video recorders (NVRs), to conduct DDoS attacks. [...]

Hunters International ransomware claims attack on Tata Technologies
2025-03-04 15:04

The Hunters International ransomware gang has claimed responsibility for a January cyberattack attack on Tata Technologies, stating they stole 1.4TB of data from the company. [...]

Broadcom fixes three VMware zero-days exploited in attacks
2025-03-04 13:23

Broadcom warned customers today about three VMware zero-days, tagged as exploited in attacks and reported by the Microsoft Threat Intelligence Center. [...]

How New AI Agents Will Transform Credential Stuffing Attacks
2025-03-04 11:00

Credential stuffing attacks had a huge impact in 2024, fueled by a vicious circle of infostealer infections and data breaches. But things could be about to get worse still with Computer-Using...

Over 4,000 ISP IPs Targeted in Brute-Force Attacks to Deploy Info Stealers and Cryptominers
2025-03-04 09:01

Internet service providers (ISPs) in China and the West Coast of the United States have become the target of a mass exploitation campaign that deploys information stealers and cryptocurrency...

New ClickFix attack deploys Havoc C2 via Microsoft Sharepoint
2025-03-03 17:33

A newly uncovered ClickFix phishing campaign is tricking victims into executing malicious PowerShell commands that deploy the Havok post-exploitation framework for remote access to compromised...

Hackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMail
2025-03-03 17:26

Threat actors are targeting Amazon Web Services (AWS) environments to push out phishing campaigns to unsuspecting targets, according to findings from Palo Alto Networks Unit 42. The cybersecurity...