Zeljka Zorz

A ransomware gang dubbed Codefinger is encrypting data stored in target organizations' AWS S3 buckets with AWS's server-side encryption option with

The number of internet-facing Ivanti Connect Secure instances vulnerable to attack via CVE-2025-0282 has fallen from 2,048 to 800 in the last four days, the Shadowserver Foundation

Generative AI has helped lower the barrier for entry for malicious actors and has made them more efficient, i.e., quicker at creating convincing

Fortinet has patched an authentication bypass vulnerability (CVE-2024-55591) affecting its FortiOS firewalls and FortiProxy web gateways that's being exploited by attackers to compromise publicly-exposed FortiGate firewalls.

Microsoft has marked January 2025 Patch Tuesday with a hefty load of patches: 157 CVE-numbered security issues have been fixed in various products, three of which (in Hyper-V) are being actively exploited.

A threat actor has leaked configuration files ("configs") for 15,000+ Fortinet Fortigate firewalls and associated admin and user credentials.

If you're an organization using SimpleHelp for your remote IT support/access needs, you should update or patch your server installation without

Attackers are impersonating the Computer Emergency Response Team of Ukraine (CERT-UA) via AnyDesk to gain access to target computers.

The "email bombing + posing as tech support via Microsoft Teams" combination is proving fruitful for two ransomware threat actors.

Researchers have uncovered two Mirai-based botnets harnessing Internet of Things (IoT) devices to DDoS target organizations around the world.