Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco Secure Firewall Management Center software, as a zero-day vulnerability more than a month before Cisco patched the hole, ...

Ransomware actors are ditching Cobalt Strike in favor of native Windows tools, as payment rates hit record lows and data theft surges.

A fake $TEMU crypto airdrop uses the ClickFix trick to make victims run malware themselves and quietly installs a remote-access backdoor.

Recent social engineering schemes involving WordPress and Microsoft’s Windows Terminal show that this relatively basic tactic is a growing threat.

A banking malware strain known as Horabot has re-emerged in Mexico with a more sophisticated infection chain, combining phishing emails, deceptive CAPTCHA prompts and automated email propagation ...

Every year, security vendors publish threat reports. Most say variations of the same thing. But Barracuda’s Managed XDR Global Threat Report stands out for a reason that matters to MSPs: it’s built on ...

In recent months, Microsoft Threat Intelligence identified email campaigns using lures around W-2, tax forms, or similar ...

A prolific ransomware group has been exploiting a zero-day vulnerability in a Cisco firewall product since January, according ...

A ransomware affiliate known as 'hastalamuerte' has revealed operational details about a group called The Gentlemen , shedding light on its tactics, techniques and internal disputes.

Get live updates and the latest news as Tulsi Gabbard, John Ratcliffe and Kash Patel testify to Congress on worldwide threats ...

A political fundraising email from President Donald Trump’s political action committee has a provocative pitch.

Windows 11 now lets users choose their default user folder name during setup. The new OOBE option fixes the 5-letter folder issue.