DARKReading

Researchers say the huge spike of coordinated scanning for Microsoft RDP services could indicate the existence of a new, as-yet-undisclosed vulnerability.

The "incident" led to outages affecting a variety of the tech company's operations, though the full scope of the breach is unknown.

New features to take over smartphones and monitor user activity demonstrate the continued evolution of the malware, which is now being spread on GitHub.

Until businesses begin to account for uncontrolled variables in their threat models, attackers will continue to exploit the weakest link in the chain.

Lab-Dookhtegen claims major attack on more than 60 cargo ships and oil tankers belonging to two Iranian companies on US sanctions list.

The chairman sent letters out to companies like Apple, Meta, and Microsoft, advising them not to adhere to the demands of foreign governments to weaken their encryption.

Because instructions appear to come from AI-generated content summaries and not an external source, the victim is more likely to follow them without suspicion.

Attackers not only steal credentials but also can maintain long-term, persistent access to corporate networks through the global campaign.

As threats intensify and cloud adoption expands, organizations must leave outdated security models behind.

A Chinese APT is going where most APTs don't: deep into the cloud, compromising supply chains and deploying uncommon malware.