Ukrainian emergency services and hospitals hit by espionage campaign using new AgingFly malware
Russian state-sponsored hackers are using new 'AgingFly' malware in an espionage campaign targeting Ukrainian hospitals and emergency services.
Most 'AI SOCs' are just faster triage, and that's not enough
Many AI security tools only speed up alert analysis, failing to reduce analyst workload. Experts argue real gains require AI that automates response a
US nationals jailed for operating fake remote worker laptop farms for North Korea
Two US nationals have been jailed for helping North Korean IT workers infiltrate over 100 American firms, funneling millions to the DPRK's weapons pro
ZionSiphon malware designed to sabotage water treatment systems
A new proof-of-concept malware, ZionSiphon, demonstrates how attackers can sabotage water treatment plants by manipulating industrial control systems.
Ghost breaches: How AI-mediated narratives have become a new threat vector
Three incidents. No actual breaches. Full-scale crisis response. AI hallucinations are creating a new threat vector that most organizations are unprep
ThreatsDay bulletin: A deep dive into the Defender 0-day, SonicWall attacks, and a 17-year-old Excel flaw
This week’s threat bulletin is a heavy one. We analyze the critical Microsoft Defender 0-day, a massive SonicWall brute-force campaign, and a 17-year-
OpenAI's new cyber model signals a new front in the AI security arms race
OpenAI's GPT-5.4-Cyber, a model for defenders, enters the field after Anthropic's offensive AI reveal, escalating the AI-driven cybersecurity arms rac
The digital front: Analyzing Iran's cyber warfare capabilities in geopolitical conflict
A deep dive into Iran's state-sponsored cyber capabilities, analyzing potential attack scenarios, target sectors, and the critical steps businesses mu
When drones attack: Analyzing the cyber-physical threat to critical infrastructure
A deep-dive into the May 2024 drone attack on Russia's Afipsky oil refinery, analyzing it as a case study in converged cyber-physical warfare.
Microsoft Defender's 'RedSun' zero-day: A researcher's protest and a threat to Windows systems
A researcher's protest exposed a critical zero-day in Microsoft Defender, allowing attackers full system control. Here's the technical breakdown and h
Attempted breach of Swedish power plant highlights escalating cyber front in European energy sector
A failed 2022 cyberattack on a Swedish power plant, disclosed by officials, reveals the escalating threat pro-Russian actors pose to European critical
Over 100 malicious Chrome extensions found stealing data and creating backdoors
A detailed analysis of a coordinated campaign where over 100 malicious Chrome extensions compromised 4 million users, stealing data and creating backd
Sweden's attribution of energy sector attack highlights rising threat to critical infrastructure
Sweden publicly blamed a pro-Russian group for a 2022 cyberattack on a heating plant, a significant move signaling a new era of hybrid threats.