Iran-linked Cavern Manticore hackers used a modular C&C framework, likely built with AI assistance, to target Israeli ...
The ransomware’s use of trusted administrative tools and recovery-disruption tactics shows why containment, not just endpoint ...
Designed for mobile phones and laptops, this secure, portable SSD features an ingenious NFC lock that can be activated via a ...
I'd like to thank my co-author, Martin Zugec, for his valuable contributions to this report. This intrusion adds three dimensions to the public understanding of Chinese APT activity in contested ...
Thursday. Another week, another batch of things that probably should've been caught sooner but weren't. This one's got some range — old vulnerabilities getting new life, a few "why was that even ...
IntroductionIn December 2025, Zscaler ThreatLabz identified a new command-and-control (C2) framework implant that we track as SnappyClient, which was delivered using HijackLoader. SnappyClient has an ...
I'd like to thank my coauthors Adrian Schipor, Victor Vrabie, Marius Baciu, and Martin Zugec for their invaluable contributions to this research. This research provides a direct look at the new ...
CVE-2025-9242 allows unauthenticated remote code execution on WatchGuard Fireware devices Vulnerability affects VPN configurations using IKEv2 with dynamic gateway peers Businesses should patch ...
Secure coding refers to the practice of writing source code for software applications in a manner that actively prevents the introduction of security vulnerabilities. It is a proactive approach ...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published four Industrial Control Systems (ICS) advisories, calling out several security flaws affecting products from Siemens, GE ...