Vimeo has suffered a data breach via analytics vendor Anodot, exposing user metadata and emails. The ShinyHunters group claims responsibility and is demanding ransom, highlighting the risks of third-party integrations.
A dramatic new wave of vishing attacks by BlackFile is targeting retail and hospitality firms, using fake IT calls and advanced data theft methods to extort millions. Discover how the group operates and how businesses can protect themselves.
Ransomware attackers are stepping up their game with custom-built exfiltration malware and advanced evasion tactics, leaving defenders scrambling to keep up. Discover how Trigona affiliates are bypassing traditional security measures in the latest wave of cyberattacks.
A trusted npm logger and the Hugging Face AI platform were weaponized in a stealthy supply chain attack, unleashing cross-platform malware that stole secrets and evaded detection. Discover how the breach unfolded and what it means for developer security.
Cybercriminals are exploiting Microsoft Teams and remote support tools to impersonate IT staff, gaining access to corporate networks and exfiltrating sensitive data while blending in with normal operations.
UAC-0247 uses fake aid proposals and advanced malware to infiltrate Ukrainian hospitals and governments, stealing browser and WhatsApp data through sophisticated phishing and custom hacking tools.
Ransomware attacks have stabilized at historically high levels into 2026, marking a new baseline for cyber risk. Explore the latest shifts in group activity, attack tactics, and sector vulnerabilities in this investigative report.
A shadowy threat group, UAC-0247, is exploiting humanitarian crises to launch a wave of sophisticated data-theft malware attacks on Ukrainian public sector institutions. Discover how the campaign works, what’s at risk, and how defenders can respond.
Agentic LLM browsers are revolutionizing web automation—but their hidden control planes are turning old web bugs into powerful tools for attackers. Discover how vulnerabilities in AI-driven browsers enable stealthy session hijacking and data theft, and why new safeguards may not be enough.
Progress Software’s OpenEdge platform faces critical security flaws that could let remote attackers access sensitive files and data. Immediate patching is urged to prevent exploitation.