Russian CTRL toolkit spread via malicious LNK files in February 2026, routing C2 through FRP-tunneled RDP to evade detection.

AtlasCross RAT spreads via 11 fake domains registered October 27, 2025, enabling encrypted C2 control and persistence.

Credential theft is now the primary way attackers gain initial access to enterprise networks, and the speed, scale, and sophistication with which they are weaponizing stolen credentials is outpacing ...

Flashpoint has announced the release of its 2026 Global Threat Intelligence Report (GTIR), providing security leaders from threat intelligence and vulnerability management teams to physical security ...

Fake accounts pretending to be Sasha-Jay gained 81,000 followers on TikTok and 22,000 on Instagram Whenever somebody stares at Sasha-Jay Davies in a supermarket, she panics, thinking they recognise ...

PcComponentes, a major technology retailer in Spain, has denied claims of a data breach on its systems impacting 16 million customers, but confirmed it suffered a credential stuffing attack.

CHICAGO (WLS) -- The ABC7 I-Team has a March Madness scam warning. You could be betting on your favorite college team or trying to get tickets to a game. But before you spend or click a link, you need ...

“The platforms should be absolutely begging Congress to regulate them, because the alternative is they get sued into oblivion by a bunch of law firms.” By Kevin RooseCasey NewtonWhitney JonesRachel ...

Trevor Hilligoss is the Senior Investigator of Security Research at SpyCloud and an experienced researcher with a background in federal law enforcement. Before leaving government service, Trevor spent ...