The Russian state-sponsored APT28 threat group is using a custom variant of the open-source Covenant post-exploitation framework for long-term espionage operations. Researchers at cybersecurity ...

Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days.

New hacking cluster exploits web servers and Mimikatz to infiltrate Asian infrastructure for long-term espionage in aviation, ...

Distributed through over 100 GitHub repositories, the BoryptGrab stealer targets browser, wallet, system, and other user data ...

The FBI said it "identified and addressed suspicious activities on FBI networks" and that it was responding but did not elaborate.

Threat actors are operationalizing AI to scale and sustain malicious activity, accelerating tradecraft and increasing risk for defenders, as illustrated by recent activity from North Korean groups ...

Generative AI is raising the risk of dangling DNS attack vectors, as the orphaned resources are no longer just a phishing ...

Operational penetration testing is a process of simulating real-world attacks on OT systems to identify vulnerabilities before cybercriminals can exploit them, either physically or remotely. OT ...

Cybercriminals are exploiting AI chatbots to launch sophisticated hacking attacks, with hackers recently stealing 195 million identities from Mexican government agencies. Despite safeguards built into ...

Overview On February 11, 2026, NSFOCUS CERT monitored Microsoft’s release of its February security update patches, addressing 59 security issues across widely used products such as Windows, Azure, ...

Google says it disrupted what it believes was the world's largest residential proxy network that hijacked about 9 million ...

Generative AI tools analyzed target networks and wrote exploit code, enabling an opportunistic attacker to have an outsized ...