Collaborate Disseminate
Google researchers said Chinese attackers have been exploiting a zero-day since mid-2024, and they’ve moved on to a more advanced version of Brickstorm malware called Grimbolt.
The post Chinese hackers exploited a Dell zero-day for 18 months before anyone noticed appeared first on CyberScoop.
Continue reading Chinese hackers exploited a Dell zero-day for 18 months before anyone noticed
The 47-year-old man, who was not identified, faces up to five years in prison for producing, obtaining and sharing computer programs used to conduct cyberattacks.
The post Polish authorities arrest alleged Phobos ransomware affiliate appeared first on CyberScoop.
Continue reading Polish authorities arrest alleged Phobos ransomware affiliate
Palo Alto Network’s incident response firm said identity-based attacks are exploding as poor security controls stretch across a widening mosaic of integrated tools and systems.
The post Unit 42: Nearly two-thirds of breaches now start with identity abuse appeared first on CyberScoop.
Continue reading Unit 42: Nearly two-thirds of breaches now start with identity abuse
The vendor said the memory-corruption defect was exploited to target specific people, but it did not describe the objectives of the attack.
The post Apple discloses first actively exploited zero-day of 2026 appeared first on CyberScoop.
Continue reading Apple discloses first actively exploited zero-day of 2026
Most signs suggest the group is running a massive hoax by claiming hundreds of initial victims, but at least some of the threat 0APT poses is grounded in truth backed by proven capabilities.
The post 0APT ransomware group rises swiftly with bluster, along with genuine threat of attack appeared first on CyberScoop.
Microsoft said three of the exploited vulnerabilities were publicly known, suggesting attackers already had details about the defects prior to Tuesday’s release.
The post Microsoft Patch Tuesday matches last year’s zero-day high with six actively exploited vulnerabilities appeared first on CyberScoop.
Shadowserver scans have identified 86 compromised instances, and researchers warn multiple threat groups are involved.
The post Fallout from latest Ivanti zero-days spreads to nearly 100 victims appeared first on CyberScoop.
Continue reading Fallout from latest Ivanti zero-days spreads to nearly 100 victims
Authorities have arrested multiple members of 764 during the past year, reflecting heightened law enforcement activity targeting the violent extremist collective.
The post Alleged 764 member arrested, charged with CSAM possession in New York appeared first on CyberScoop.
Continue reading Alleged 764 member arrested, charged with CSAM possession in New York
Limited attacks occurred prior to Ivanti’s disclosure, followed by mass exploitation by multiple threat groups. More than 1,400 potentially vulnerable instances remain exposed.
The post Ivanti’s EPMM is under active attack, thanks to two critical zero-days appeared first on CyberScoop.
Continue reading Ivanti’s EPMM is under active attack, thanks to two critical zero-days
The Chinese APT group Lotus Blossom intruded the tool’s internal systems to snoop on a limited set of users’ activities, according to researchers.
The post China-based espionage group compromised Notepad++ for six months appeared first on CyberScoop.
Continue reading China-based espionage group compromised Notepad++ for six months