News

Game of clones: Sophos and the MITRE ATT&CK Enterprise 2025 Evaluations

Bys s December 15, 2025

Winter is coming – so it must be time for Sophos X-Ops’ report on this year’s MITRE ATT&CK Enterprise Evaluations

News

New FileFix Variant Delivers StealC Malware Through Multilingual Phishing Site
Bys s September 16, 2025

Cybersecurity researchers have warned of a new campaign that’s leveraging a variant of the FileFix social engineering tactic to deliver the StealC information stealer malware. “The observed campaign uses a highly convincing, multilingual phishing site (e.g., fake Facebook Security page), with anti-analysis techniques and advanced obfuscation to evade detection,” Acronis security researcher Eliad

Read More New FileFix Variant Delivers StealC Malware Through Multilingual Phishing Site
News

Why SIEM Rules Fail and How to Fix Them: Insights from 160 Million Attack Simulations
Bys s August 25, 2025

Security Information and Event Management (SIEM) systems act as the primary tools for detecting suspicious activity in enterprise networks, helping organizations identify and respond to potential attacks in real time. However, the new Picus Blue Report 2025, based on over 160 million real-world attack simulations, revealed that organizations are only detecting 1 out of 7…

Read More Why SIEM Rules Fail and How to Fix Them: Insights from 160 Million Attack Simulations
News

Google Exposes Vishing Group UNC6040 Targeting Salesforce with Fake Data Loader App
Bys s June 4, 2025

Google has disclosed details of a financially motivated threat cluster that it said “specialises” in voice phishing (aka vishing) campaigns designed to breach organizations’ Salesforce instances for large-scale data theft and subsequent extortion. The tech giant’s threat intelligence team is tracking the activity under the moniker UNC6040, which it said exhibits characteristics that align with

Read More Google Exposes Vishing Group UNC6040 Targeting Salesforce with Fake Data Loader App
News

Leavenworth, Kansas cyberattack disrupts city services
Bys s December 8, 2025

Joseph Topping reports: Officials in Leavenworth, Kansas, say a cyberattack behind a Nov. 19 network outage is still disrupting invoice, permitting and hiring systems, though emergency services remain unaffected. The city first reported a “network outage affecting city services” on Nov. 19 after computer and phone systems began failing late that morning. Outside information technology……

Read More Leavenworth, Kansas cyberattack disrupts city services
News

Application Security Firm DryRun Raises $8.7 Million in Seed Funding
Bys s January 22, 2025

DryRun Security has raised $8.7 million in a seed funding round for its AI-powered application security solutions. The post Application Security Firm DryRun Raises $8.7 Million in Seed Funding appeared first on SecurityWeek.

Read More Application Security Firm DryRun Raises $8.7 Million in Seed Funding
News

ApolloMD notifies patients of 11 physician practices affected by a June cyberattack
Bys s September 26, 2025

On June 12, 2025, Qilin added ApolloMD to their darkweb leak site with a date of June 6. They claimed to have 238 GB of files. ApolloMD, headquartered in Georgia, is a business associate to hospitals and health systems, providing them with services to enhance clinical operations and patient care, and to optimize financial performance…….

Read More ApolloMD notifies patients of 11 physician practices affected by a June cyberattack

Similar Posts