The supply chain attack involving the GitHub Action "tj-actions/changed-files" started as a highly-targeted attack against one of Coinbase's open-source projects, before evolving into...
Mar 22, 2025Ravie LakshmananFinancial Security / Cryptocurrency
The U.S. Treasury Department has announced that it's removing sanctions against Tornado Cash, a cryptocurrency mixer service...
Mar 21, 2025Ravie LakshmananThreat Hunting / Vulnerability
Threat hunters have uncovered a new threat actor named UAT-5918 that has been attacking critical infrastructure entities...
Mar 21, 2025Ravie LakshmananRansomware / BYOVD
The threat actors behind the Medusa ransomware-as-a-service (RaaS) operation have been observed using a malicious driver dubbed ABYSSWORKER...
Mar 21, 2025Ravie LakshmananMalware / Cyber Attack
Two known threat activity clusters codenamed Head Mare and Twelve have likely joined forces to target Russian...
Mar 21, 2025The Hacker NewsNetwork Security / Vulnerability
After conducting over 10,000 automated internal network penetration tests last year, vPenTest has uncovered a troubling...
Mar 21, 2025Ravie LakshmananCybercrime / Cyber Espionage
The China-linked advanced persistent threat (APT) group. known as Aquatic Panda has been linked to a "global...
Mar 21, 2025Ravie LakshmananCyber Attack / Vulnerability
Two now-patched security flaws impacting Cisco Smart Licensing Utility are seeing active exploitation attempts, according to SANS...
Mar 20, 2025Ravie LakshmananMalware / Threat Analysis
YouTube videos promoting game cheats are being used to deliver a previously undocumented stealer malware called Arcane...
