Threat actors are employing a new variation of the ClickFix social engineering technique called InstallFix to convince users into running…
Browsing: attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered federal agencies to patch three iOS security flaws targeted in cyberespionage…
Tycoon 2FA, one of the prominent phishing-as-a-service (PhaaS) toolkits that allowed cybercriminals to stage adversary-in-the-middle (AitM) credential harvesting attacks at…
Multiple iOS exploits and five exploit chains have been found in a single exploit kit once used by Russian state…
Cybersecurity researchers have warned of a surge in retaliatory hacktivist activity following the U.S.-Israel coordinated military campaign against Iran, codenamed…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a VMware Aria Operations vulnerability tracked as CVE-2026-22719 to its Known…
The groups formed a loose alliance in recent days, targeting critical infrastructure in the Middle East and the U.S.
Researchers warn that a newly identified open-source AI security testing platform called CyberStrikeAI was used by the same threat actor…
Most SaaS teams remember the day their user traffic started growing fast. Few notice the day bots started targeting them.…
Ravie LakshmananFeb 27, 2026Network Security / Vulnerability The Shadowserver Foundation has revealed that over 900 Sangoma FreePBX instances still remain…