A flaw in end-of-life models of D-Link NAS devices allows attackers to create a backdoor, potentially accessing sensitive information and achieving remote code execution.
Congresswoman Cathy McMorris Rodgers and Senator Maria Cantwell introduce bipartisan federal data protection law to give Americans greater control over their personal data.
Byakugan malware distributed through fake Adobe Acrobat Reader installers showcases adaptability in compromising systems and harvesting sensitive data.
Threat actors impersonating employees target healthcare organizations to gain access to sensitive information and redirect funds to attacker-controlled bank accounts.
Latrodectus, a new malware loader suspected to be a successor to IcedID, has been detected in malicious email campaigns since November 2023, with nearly a dozen associated campaigns since February 2024.
Chinese threat actors, including UNC5291 (Volt Typhoon) and UNC5221, are exploiting vulnerabilities in Ivanti products, impacting government agencies, SMBs, and enterprises in aerospace, banking, defense, and government sectors.
