News

Sophos achieves its best-ever results in the MITRE ATT&CK Enterprise 2025 Evaluation

Bys s December 10, 2025

A major milestone: Sophos XDR delivers 100% detection coverage in the latest ATT&CK Evaluation.

News

MintsLoader Delivers StealC Malware and BOINC in Targeted Cyber Attacks
Bys s January 27, 2025

Threat hunters have detailed an ongoing campaign that leverages a malware loader called MintsLoader to distribute secondary payloads such as the StealC information stealer and a legitimate open-source network computing platform called BOINC. “MintsLoader is a PowerShell based malware loader that has been seen delivered via spam emails with a link to Kongtuke/ClickFix pages or…

Read More MintsLoader Delivers StealC Malware and BOINC in Targeted Cyber Attacks
News

Operation Heart Blocker: Disruption action deals blow to criminal cyber network HeartSender
Bys s February 1, 2025

During a disruption action on January 29, 2025, HeartSender servers and domains were seized by various police services. HeartSender is the name of a group of phishing software makers. The Cybercrime Team of the East Brabant police unit started an investigation at the end of 2022, after phishing software was found on the computer of…

Read More Operation Heart Blocker: Disruption action deals blow to criminal cyber network HeartSender
News

How crypto criminals stole $700 million from people – often using age-old tricks
Bys s January 20, 2026

Joe Tidy reports on the explosion of cryptocurrency thefts and scams over the past few years. There’s a lot of material in the post, but of particular interest to DataBreaches was this part of his report: “Data is a common problem as Bitcoin millionaires are becoming so frequent, and there are stolen databases that are……

Read More How crypto criminals stole $700 million from people – often using age-old tricks
News

New Browser Security Report Reveals Emerging Threats for Enterprises
Bys s November 10, 2025

According to the new Browser Security Report 2025, security leaders are discovering that most identity, SaaS, and AI-related risks converge in a single place, the user’s browser. Yet traditional controls like DLP, EDR, and SSE still operate one layer too low. What’s emerging isn’t just a blindspot. It’s a parallel threat surface: unmanaged extensions acting…

Read More New Browser Security Report Reveals Emerging Threats for Enterprises
News

Cisco Patches CVE-2025-20188 (10.0 CVSS) in IOS XE That Enables Root Exploits via JWT
Bys s May 8, 2025

Cisco has released software fixes to address a maximum-severity security flaw in its IOS XE Wireless Controller that could enable an unauthenticated, remote attacker to upload arbitrary files to a susceptible system. The vulnerability, tracked as CVE-2025-20188, has been rated 10.0 on the CVSS scoring system. “This vulnerability is due to the presence of a…

Read More Cisco Patches CVE-2025-20188 (10.0 CVSS) in IOS XE That Enables Root Exploits via JWT
News

BeyondTrust Flaw Used for Web Shells, Backdoors, and Data Exfiltration
Bys s February 20, 2026

Threat actors have been observed exploiting a recently disclosed critical security flaw impacting BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) products to conduct a wide range of malicious actions, including deploying VShell and The vulnerability, tracked as CVE-2026-1731 (CVSS score: 9.9), allows attackers to execute operating system commands in the context of the

Read More BeyondTrust Flaw Used for Web Shells, Backdoors, and Data Exfiltration

Similar Posts