A new ATO campaign using TeamFiltration breached 80,000+ Microsoft Entra ID accounts via password spraying, impacting ...

ConnectWise rotates ScreenConnect certificates by June 13 after config data concerns, impacting on-prem users to prevent ...

Critical zero-click AI vulnerability EchoLeak exposed sensitive Microsoft 365 Copilot data; Microsoft patched it to prevent data leaks.

Black Basta affiliates use Teams phishing, Python scripts, and cURL to attack finance, insurance, and construction sectors.

To that end, 295 unique IP addresses have been found to be engaged in brute-force attempts against Tomcat Manager on that ...

Microsoft patches 67 vulnerabilities, including a WEBDAV zero-day actively exploited by Stealth Falcon. Critical for ...

INTERPOL and 26 countries dismantled 20,000+ malicious IPs tied to info-stealing malware, disrupting global cybercrime ...

SinoTrack GPS flaws let attackers remotely control vehicles and track locations, affecting all platform versions. Change ...

Salesforce Industry Cloud has 20+ config risks exposing sensitive data; customers must fix most issues to avoid compliance ...

The stealer, initially marketed on Telegram for free under beta in late December 2024, has since transitioned to a malware-as ...

DNS attacks threaten every online interaction; securing DNS with ClouDNS protects businesses and prevents costly disruptions.

FIN6 uses fake resumes hosted on AWS to deliver More_eggs malware, targeting recruiters to steal credentials and card data ...