intelligence gathering

Meta, formerly known as Facebook, announced on Tuesday that it was taking some action to deactivate or delete the accounts of four different malicious cyber groups from Pakistan and Syria that Meta found to be targeting the people of Afghanistan, Western...

HTML smuggling techniques are increasingly used by attackers in phishing campaigns as a means to gain initial access and deploy a range of threats, including but not limited to banking malware, remote administration Trojans (RATs), and ransomware payloas. …

The operators of the TrickBot Trojan are working with the Shathak threat group to distribute their software, ultimately leading to the deployment of Conti ransomware on infected machines. Cybereason Security Analyst Ale…

While we are recovering from the worst of the COVID-19 pandemic, cyber threats show no signs of abating, with cybercriminals still using advanced methods to achieve their goals. Global Threat Trends Report Shows Cyberattacks Are Targeting Digital Infrastructure, Ransomware…

In recent years, continuous fuzz testing has become an important part of the software development life cycle. This technology usually inputs unexpected or random data into the program, and then can dig out some crash points that are easily missed or not discovered manually. NIST software…

On November 10, 2021, foreign security manufacturer ESET exposed an attack activity by the North Korean APT organization Lazarus: ESET pointed out that the Lazarus organization used IDA Pro 7 with two backdoor files…

Stock trading platform Robinhood has disclosed a data breach after its systems were hacked, with a threat actor gaining access to the personal information of approximately 7 million customers. The attack occurred on November 3, when the attacker called customer support...

Ukraine's main law enforcement and counterintelligence agency on Thursday revealed the true identities of five people it said were involved in the hack, believed to be part of a cyberespionage group called Gamaredon, and linked the members to Russia's Federal Security Service. Ukrainian security…

The U.S. Commerce Department on Wednesday added four companies, including Israeli spyware companies NSO Group and Candiru, to a list of entities engaged in "malicious cyber activity." The agency said the two companies were placed on the list based on "these entities...

Recently, researchers discovered that a patched critical remote code execution (RCE) vulnerability in GitLab's web page has been detected and exploited as a 0day in the wild, making a large number of Internet-facing GitLab instances extremely vulnerable to attacks. The risk…