Dropbox

A threat actor tracked as MUT-1244 has stolen over 390,000 WordPress credentials in a large-scale, year-long campaign targeting other threat…

Threat actors are using public exploits for a critical authentication bypass flaw in ProjectSend to upload webshells and gain remote…

​Microsoft has seized 240 domains used by customers of ONNX, a phishing-as-a-service (PhaaS) platform, to target companies and individuals across…

In today’s landscape of advanced phishing attacks, which leverage legitimate domains and sophisticated tactics to evade traditional security measures, it…

Attackers are triggering victims' deep-seated fear of getting in trouble in order to spread the sophisticated stealer across continents.

The notorious APT hacking group known as FIN7 launched a network of fake AI-powered deepnude generator sites to infect visitors with…

The threat group tracked as APT42 remains on the warpath with various phishing and other social engineering campaigns, as tensions…

A series of targeted cyberattacks that started at the end of July 2024, targeting dozens of systems used in Russian…

Stolen credentials are a big problem, commonly used to breach networks in attacks. Learn more from Specops Software about checking…

Google says it recently fixed an authentication weakness that allowed crooks to circumvent email verification needed to create a Google Workspace…