ASP.NET Vulnerability Lets Hackers Hijack Servers, Inject Malicious Code
Microsoft cybersecurity experts have identified a vulnerability flaw affecting ASP.NET applications, putting thousands of web servers at risk.…
DeepSeek-R1 LLM Fails Over Half of Jailbreak Attacks in Security Analysis
DeepSeek-R1 LLM fails 58% of jailbreak attacks in Qualys security analysis. Learn about the vulnerabilities, compliance concerns, and risks for enterprise adoption.
Ukraine’s largest bank PrivatBank Targeted with SmokeLoader malware
UAC-0006, a financially motivated threat actor, targets PrivatBank customers with advanced phishing attacks. CloudSEK’s research reveals malicious emails…
Banking Malware Uses Live Numbers to Hijack OTPs, Targeting 50,000 Victims
A banking malware campaign using live phone numbers to redirect SMS messages has been identified by the zLabs research team, uncovering 1,000+ malicious apps and 2.5GB of exposed data.
Hackers Using Fake Microsoft ADFS Login Pages to Steal Credentials
A global phishing campaign is actively exploiting a legacy Microsoft authentication system to steal user credentials and bypass multi-factor authentication (MFA), targeting over 150 organizations.
New ValleyRAT Malware Variant Spreading via Fake Chrome Downloads
Morphisec uncovers a new ValleyRAT malware variant with advanced evasion tactics, multi-stage infection chains, and novel delivery methods…
Cisco Finds DeepSeek R1 Highly Vulnerable to Harmful Prompts
DeepSeek R1, a cost-efficient AI model, achieves impressive reasoning but fails all safety tests in a new study…
Israeli Spyware Firm Paragon Linked to WhatsApp Zero-Click Attack
WhatsApp recently revealed a targeted spyware campaign linked to the Israeli firm Paragon, which affected 90 individuals, including…
Operation Talent: Two Arrested as Authorities Dismantle Cracked and Nulled
Global law enforcement seizes 12 domains including Sellix, Cracked and Nulled, €300,000 in cash and cryptocurrencies, and multiple…
FUNNULL Unmasked: AWS, Azure Abused for Global Cybercrime Operations
Discover how cybercriminals use 'Infrastructure Laundering' to exploit AWS and Azure for scams, phishing, and money laundering. Learn about FUNNULL CDN's tactics and their global impact on businesses and cybersecurity.