Security News

Phishers Exploit Google Sites and DKIM Replay to Send Signed Emails, Steal Credentials
2025-04-22 10:50

In what has been described as an "extremely sophisticated phishing attack," threat actors have leveraged an uncommon approach that allowed bogus emails to be sent via Google's infrastructure and...

7 Steps to Take After a Credential-Based cyberattack
2025-04-18 13:33

Hackers don't break in—they log in. Credential-based attacks now fuel nearly half of all breaches. Learn how to scan your Active Directory for compromised passwords and stop attackers before they...

CVE-2025-24054 Under Active Attack—Steals NTLM Credentials on File Download
2025-04-18 04:29

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a medium-severity security flaw impacting Microsoft Windows to its Known Exploited Vulnerabilities (KEV) catalog,...

Malicious PyPI Package Targets MEXC Trading API to Steal Credentials and Redirect Orders
2025-04-15 13:20

Cybersecurity researchers have disclosed a malicious package uploaded to the Python Package Index (PyPI) repository that's designed to reroute trading orders placed on the MEXC cryptocurrency...

Phishing Campaigns Use Real-Time Checks to Validate Victim Emails Before Credential Theft
2025-04-14 13:24

Cybersecurity researchers are calling attention to a new type of credential phishing scheme that ensures that the stolen information is associated with valid online accounts. The technique has...

Hackers target SSRF bugs in EC2-hosted sites to steal AWS credentials
2025-04-09 20:58

A targeted campaign exploited Server-Side Request Forgery (SSRF) vulnerabilities in websites hosted on AWS EC2 instances to extract EC2 Metadata, which could include Identity and Access Management...

Phishing kits now vet victims in real-time before stealing credentials
2025-04-09 13:49

Phishing actors are employing a new evasion tactic called 'Precision-Validated Phishing' that only shows fake login forms when a user enters an email address that the threat actors specifically...

Australian pension funds hit by wave of credential stuffing attacks
2025-04-04 16:12

Over the weekend, a massive wave of credential stuffing attacks hit multiple large Australian super funds, compromising thousands of members' accounts. [...]

Attackers are leveraging Cisco Smart Licensing Utility static admin credentials (CVE-2024-20439)
2025-04-03 13:04

CVE-2024-20439, a static credential vulnerability in the Cisco Smart Licensing Utility, is being exploited by attackers in the wild, CISA has confirmed on Monday by adding the flaw to its Known...

New Android Trojan Crocodilus Abuses Accessibility to Steal Banking and Crypto Credentials
2025-03-29 07:28

Cybersecurity researchers have discovered a new Android banking malware called Crocodilus that's primarily designed to target users in Spain and Turkey. "Crocodilus enters the scene not as a...