Security News

Debunking the AI Hype: Inside Real Hacker Tactics
2025-02-18 12:20

Is AI really reshaping the cyber threat landscape, or is the constant drumbeat of hype drowning out actual, more tangible, real-world dangers? According to Picus Labs’ Red Report 2025 which...

Microsoft: Hackers steal emails in device code phishing attacks
2025-02-15 15:22

An active campaign from a threat actor potentially linked to Russia is targeting Microsoft 365 accounts of individuals at organizations of interest using device code phishing. [...]

Hackers exploit authentication bypass in Palo Alto Networks PAN-OS
2025-02-14 21:20

Hackers are launching attacks against Palo Alto Networks PAN-OS firewalls by exploiting a recently fixed vulnerability (CVE-2025-0108) that allows bypassing authentication. [...]

Chinese hackers breach more US telecoms via unpatched Cisco routers
2025-02-14 12:56

China's Salt Typhoon hackers are still actively targeting telecoms worldwide and have breached more U.S. telecommunications providers via unpatched Cisco IOS XE network devices. [...]

Microsoft: Russian-Linked Hackers Using 'Device Code Phishing' to Hijack Accounts
2025-02-14 10:27

Microsoft is calling attention to an emerging threat cluster it calls Storm-2372 that has been attributed to a new set of cyber attacks aimed at a variety of sectors since August 2024. The attacks...

whoAMI attacks give hackers code execution on Amazon EC2 instances
2025-02-13 23:35

Security researchers discovered a name confusion attack that allows access to an Amazon Web Services account to anyone that publishes an Amazon Machine Image (AMI) with a specific name. [...]

Hacker leaks account data of 12 million Zacks Investment users
2025-02-13 17:39

Zacks Investment Research (Zacks) last year reportedly suffered another data breach that exposed sensitive information related to roughly 12 million accounts. [...]

North Korean hackers spotted using ClickFix tactic to deliver malware
2025-02-13 16:16

North Korean state-sponsored group Kimsuky (aka Emerald Sleet, aka VELVET CHOLLIMA) is attempting to deliver malware to South Korean targets by leveraging the so-called “ClickFix” tactic. A...

Hackers Use CAPTCHA Trick on Webflow CDN PDFs to Bypass Security Scanners
2025-02-13 15:13

A widespread phishing campaign has been observed leveraging bogus PDF documents hosted on the Webflow content delivery network (CDN) with an aim to steal credit card information and commit...

How Much Time Does it Take for Hackers to Crack My Password?
2025-02-13 11:00

Hackers can crack weak passwords in seconds, while strong ones may take years. Learn about the time to crack your password and boost security.