On September 25, 2025, eSentire’s Threat Response Unit (TRU) uncovered a sophisticated spear-phishing operation targeting a prominent manufacturing client’s Zendesk support email. The attackers...

Field Effect’s Managed Detection and Response team identified two seemingly legitimate utilities, ImageLooker.exe and Calendaromatic.exe, on September 22, 2025. Both binaries were digitally signed...

Researchers have uncovered 18 distinct samples of Acreed, an advanced infostealer rapidly gaining favor among cybercriminal networks. Acreed’s architecture is notable for its innovative...

Jaguar Land Rover (JLR) has announced the controlled, phased resumption of its manufacturing operations following a significant cybersecurity incident that disrupted production earlier this...

A newly disclosed zero-click remote code execution (RCE) vulnerability in WhatsApp is being actively exploited against Apple’s iOS, macOS, and iPadOS platforms. The flaw,...

In the fast-paced world of digital forensics and incident response (DFIR), building a comprehensive timeline of Windows artifacts can be a time-consuming bottleneck. Forensic-Timeliner,...

A sophisticated ransomware campaign has been compromising SonicWall SSL VPN appliances since July 2025, delivering Akira ransomware and completing a full network compromise within...

In a critical security lapse, the popular open-source analytics platform Formbricks has been found vulnerable to unauthorized password resets. The flaw lies in its...

On September 25, 2025, Conscia’s Managed Detection and Response team identified a sophisticated malvertising campaign that attempted to compromise enterprise endpoints by distributing a...

Olymp Loader, a Malware-as-a-Service (MaaS) offering from the threat actor collective “OLYMPO,” has quickly become a favored tool among low- and mid-tier cybercriminals since...