In one of the most significant insider-assisted cyberattacks in Brazil’s financial history, a low-level IT operator working at C&M Software—a company that links smaller banks to Brazil’s PIX real-time paymentRead More →
The Windows operating system includes several pre-login accessibility features, intended to support users with disabilities. One of these components, utilman.exe (Utility Manager), is designed to launch accessibility tools like NarratorRead More →
Security researcher Nick Johnson (@nicksdjohnson) has revealed a highly sophisticated phishing attack that leverages two separate Google services — OAuth and Google Sites — to execute a multi-layered campaign capableRead More →
SPIDER-X, a shadowy and controversial hacktivist group that surfaced in January 2023, has quickly established itself as a digital menace under the banner of anti-Zionism and pro-Palestinian ideology. Self-styled asRead More →
Hertz Global Holdings has formally confirmed a significant data breach that compromised personal information—including driver’s license numbers and financial details—of its customers across the Hertz, Thrifty, and Dollar rental brands.Read More →
In 2024, a new kind of online trick called “ClickFix” has been fooling people into clicking on things they shouldn’t. Imagine you’re using your computer and suddenly a message popsRead More →
A newly disclosed vulnerability dubbed ImageRunner, uncovered by Tenable Research, exposed a subtle yet powerful privilege escalation pathway in Google Cloud Platform’s Cloud Run service. The vulnerability, now patched byRead More →
Two malicious Visual Studio Code (VSCode) extensions were recently discovered deploying early-stage ransomware, raising serious concerns about the security of Microsoft’s extension vetting process. Identified by cybersecurity firm ReversingLabs, theRead More →
A well-known hacking group called GreenCharlie (also known as APT42, TA453, or Mint Sandstorm) has set up new online infrastructure between January and February 2025, which is believed to beRead More →
A cybercriminal named “mr. Guram,” affiliated with the notorious “Ramp” group, has launched Mimic v.10, a new Ransomware-as-a-Service (RaaS) program, allowing hackers and Initial Access Brokers (IABs) to distribute ransomwareRead More →
