A group of hackers, named JINX-0164, has been contacting crypto devs via LinkedIn and inviting them to fake meetings that ...

Python scripts were used to test malware against endpoint detection and response agents from Sophos, CrowdStrike, and Windows ...

A threat actor is using an AI-built ransomware attack toolkit that automates Active Directory discovery and helps evade ...

A threat actor has been observed using AI coding tools to develop and refine malware designed to slip past endpoint detection ...

Weekly ThreatsDay recap: old bugs, fake tools, shady payload tricks, AI mishaps, and the usual reminder that the internet is ...

A new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent. According to Seqrite ...

Socket found seven malicious packages on PyPI The packages were abusing Gmail and WebSocket They were removed from the platform Several malicious PyPI packages were recently observed abusing Gmail to ...

A threat actor has used artificial intelligence coding tools to build and refine malware intended to bypass endpoint detection and response systems, highlighting how generative AI is being folded into ...

AI vs AI cybersecurity arrived in documented form on May 10, when an LLM agent drove a four-pivot intrusion to database exfiltration in under an hour with no human direction. CrowdStrike data puts ...

A website called “UK visa portal” has been quietly collecting passport scans, selfies, and personal data from thousands of travellers who thought they were applying through official channels.