Alessandro Mascellino

Written by A new variant of the NGate malware family has been identified, leveraging a trojanized Android application to capture payment card data and PINs.

Written by A growing range of native macOS features are being repurposed by attackers to execute code, move laterally and evade detection, according

Written by A long-running phishing operation that abuses signed remote monitoring and management (RMM) software to plant silent, persistent

Written by A North Korea-aligned espionage group has compromised a regional gaming platform serving ethnic Koreans in China.

The Mini Shai-Hulud worm has resurfaced in one of its largest single-registry waves to date, hitting hundreds of npm packages tied to the AntV data visualization ecosystem in a coordinated burst lasting around an hour.

A 10-month Android malware campaign has used nearly 250 fake apps to sign victims up to premium services on their mobile bills, with hardcoded operator targeting for users in Malaysia, Thailand, Romania and Croatia.

A nine-year-old logic flaw in the Linux kernel's process trace (ptrace) path has been discovered that could let unprivileged local users read

A VPN service used by ransomware operators, fraudsters and data thieves to mask their activity has been taken offline in a coordinated operation led by France and the Netherlands.

Iranian state-aligned hackers have pushed a new backdoor through a mix of career-themed phishing and, for the first time, search engine poisoning, expanding

Organizations in India have been urged to patch actively exploited internet-facing vulnerabilities within 12 hours under new guidance that responds to the speed AI now brings to cyber-attacks.