News

WhatsApp compromise leads to Astaroth deployment

Bys s November 20, 2025

Another campaign targeting WhatsApp users in Brazil spreads like a worm and employs multiple payloads for credential theft, session hijacking, and persistence

News

⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [6 Jan]
By January 6, 2025

Every tap, click, and swipe we make online shapes our digital lives, but it also opens doors—some we never meant to unlock. Extensions we trust, assistants we rely on, and even the codes we scan are turning into tools for attackers. The line between convenience and vulnerability has never been thinner. This week, we dive…

Read More ⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [6 Jan]
News

Cartier Data Breach: Luxury Retailer Warns Customers that Personal Data Was Exposed
Bys s June 2, 2025

Another luxury brand has been hacked. This time it’s Cartier. And before your brain starts racing back to the recent disclosures of breaches involving Dior and Tiffany no, Cartier is not another luxury LVMH brands. Cartier is owned by Richemont. SecurityWeek reports: According to a notification sent to affected clients obtained by SecurityWeek, the compromised data…

Read More Cartier Data Breach: Luxury Retailer Warns Customers that Personal Data Was Exposed
News

Inside Shanya, a packer-as-a-service fueling modern attacks
Bys s December 6, 2025

The ransomware scene gains another would-be EDR killer

Read More Inside Shanya, a packer-as-a-service fueling modern attacks
News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems
Bys s February 12, 2026

Cybersecurity researchers have discovered a fresh set of malicious packages across npm and the Python Package Index (PyPI) repository linked to a fake recruitment-themed campaign orchestrated by the North Korea-linked Lazarus Group. The coordinated campaign has been codenamed graphalgo in reference to the first package published in the npm registry. It’s assessed to be active…

Read More Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems
News

CIS launches Commercial Cloud MDR, Powered by Sophos, to protect SLTT government organizations
Bys s September 4, 2025

Investigate incidents in real time, quickly neutralize active threats, and prevent repeat attacks.

Read More CIS launches Commercial Cloud MDR, Powered by Sophos, to protect SLTT government organizations
News

Third Parties and Machine Credentials: The Silent Drivers Behind 2025’s Worst Breaches
Bys s May 6, 2025

It wasn’t ransomware headlines or zero-day exploits that stood out most in this year’s Verizon 2025 Data Breach Investigations Report (DBIR) — it was what fueled them. Quietly, yet consistently, two underlying factors played a role in some of the worst breaches: third-party exposure and machine credential abuse. According to the 2025 DBIR, third-party involvement…

Read More Third Parties and Machine Credentials: The Silent Drivers Behind 2025’s Worst Breaches

Similar Posts