News

SophosAI at Black Hat USA ’25: Anomaly detection betrayed us, so we gave it a new job

Bys s July 14, 2025

Sophos’ Ben Gelman and Sean Bergeron will present their research on enhancing command line classification with benign anomalous data at Las Vegas

News

New “Cavalry Werewolf” Attack Hits Russian Agencies with FoalShell and StallionRAT
Bys s October 3, 2025

A threat actor that’s known to share overlaps with a hacking group called YoroTrooper has been observed targeting the Russian public sector with malware families such as FoalShell and StallionRAT. Cybersecurity vendor BI.ZONE is tracking the activity under the moniker Cavalry Werewolf. It’s also assessed to have commonalities with clusters tracked as SturgeonPhisher, Silent Lynx,…

Read More New “Cavalry Werewolf” Attack Hits Russian Agencies with FoalShell and StallionRAT
News

Desert Dexter Targets 900 Victims Using Facebook Ads and Telegram Malware Links
Bys s March 10, 2025

The Middle East and North Africa have become the target of a new campaign that delivers a modified version of a known malware called AsyncRAT since September 2024. “The campaign, which leverages social media to distribute malware, is tied to the region’s current geopolitical climate,” Positive Technologies researchers Klimentiy Galkin and Stanislav Pyzhov said in…

Read More Desert Dexter Targets 900 Victims Using Facebook Ads and Telegram Malware Links
News

CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
Bys s May 22, 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws impacting Langflow and Trend Micro Apex One to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerabilities in question are listed below – CVE-2025-34291 (CVSS score: 9.4) – An origin validation error vulnerability in Langflow that could

Read More CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
News

Unprecedented: Private Equity Firm Potentially on Hook for PowerSchool’s Data Breach
Bys s May 1, 2026

Tyler Bridegan, Scott Hyman, Patrick Strubbe, and Sarah Wilk of Womble Bond Dickinson write: In a first of its kind, a California federal judge allowed claims against Bain Capital to proceed based on a data breach at its subsidiary, PowerSchool. Notably, many of the claims are based on conduct that occurred before Bain’s acquisition of PowerSchool. Although……

Read More Unprecedented: Private Equity Firm Potentially on Hook for PowerSchool’s Data Breach
News

New ZuRu Malware Variant Targeting Developers via Trojanized Termius macOS App
Bys s July 10, 2025

Cybersecurity researchers have discovered new artifacts associated with an Apple macOS malware called ZuRu, which is known to propagate via trojanized versions of legitimate software. SentinelOne, in a new report shared with The Hacker News, said the malware has been observed masquerading as the cross‑platform SSH client and server‑management tool Termius in late May 2025….

Read More New ZuRu Malware Variant Targeting Developers via Trojanized Termius macOS App
News

RansomHub Becomes 2024’s Top Ransomware Group, Hitting 600+ Organizations Globally
Bys s February 14, 2025

The threat actors behind the RansomHub ransomware-as-a-service (RaaS) scheme have been observed leveraging now-patched security flaws in Microsoft Active Directory and the Netlogon protocol to escalate privileges and gain unauthorized access to a victim network’s domain controller as part of their post-compromise strategy. “RansomHub has targeted over 600 organizations globally, spanning sectors

Read More RansomHub Becomes 2024’s Top Ransomware Group, Hitting 600+ Organizations Globally

Similar Posts