Intel

In a recent cybersecurity revelation, seven malicious PyPI packages were identified using Gmail's SMTP servers and WebSockets to facilitate data exfiltration and remote command execution. Discovered by Socket's threat research team, these packages have since been removed from PyPI. However, they had been available for over

A sophisticated cyberattack campaign by the Earth Kurma Advanced Persistent Threat (APT) group has been identified, targeting government and telecommunications organizations in Southeast Asia. This campaign, uncovered by cybersecurity researchers, poses significant risks through the use of custom malware, rootkits, and cloud storage exploitation for espionage and data theft. Targeted

Hitachi Vantara, a subsidiary of the global conglomerate Hitachi, recently faced a significant cybersecurity incident involving the Akira ransomware. The company, known for its data storage and cloud management services, took decisive action by taking its servers offline to mitigate the threat and protect its systems. Incident Overview The ransomware

British retail giant Marks & Spencer is currently grappling with significant operational disruptions due to a ransomware attack. The attack is attributed to a notorious hacking group known as Scattered Spider. This incident has led to widespread outages, affecting the company's payment systems and online services. Details of

Recent investigations by cybersecurity experts have uncovered the operations of an initial access broker (IAB) known as ToyMaker. This entity has been linked to providing access to ransomware groups, including the notorious CACTUS, enabling them to execute double extortion attacks. Understanding ToyMaker's Operations ToyMaker is identified as a

A newly identified vulnerability, CVE-2025-31324, in SAP NetWeaver Visual Composer poses a severe risk of system compromise. This flaw, scoring a perfect 10.0 in severity, allows attackers to exploit systems by deploying web shells. Organizations must assess their SAP Java systems for exposure and take immediate action to mitigate

Organizations utilizing Commvault Innovation Release are strongly advised to apply the latest patch to safeguard against CVE-2025-34028. This critical vulnerability permits remote code execution, granting attackers full system control. Understanding the Commvault Security Flaw A significant security flaw has been identified in the Commvault Command Center, a popular enterprise solution

North Korean IT operatives are leveraging deepfake technology to fabricate synthetic identities for online job interviews, aiming to secure remote work positions. This tactic is part of a broader state-sponsored employment scam designed to infiltrate organizations in the US and globally for malicious purposes. Rising Threat of Deepfake Technology Recently,

Cybercriminals are leveraging Google's infrastructure to craft deceptive emails that mimic official Google communications, aiming to steal users' Google account credentials. This sophisticated phishing attack was initially identified by a prominent figure in the blockchain community, highlighting a significant vulnerability in Google's systems. Exploiting Google&