A new report released today by Fox-IT, part of NCC Group PLC, has detailed how about 2,000 Citrix NetScalers have been exploited by a threat actor to gain persistent access. Citrix NetScaler is an ...

A new report out today from Swiss artificial intelligence-powered managed extended detection and response company Ontinue AG ...

The China-linked attacks utilizing ‘Brickstorm’ backdoors have targeted long-term persistence on VMware vCenter and ESXi servers, according to the U.S. Cybersecurity and Infrastructure Security Agency ...

Criminals exploiting a critical vulnerability in open source Apache ActiveMQ middleware are fixing the flaw that allowed them access, after establishing persistence on Linux servers.… Researchers at ...

PLUS: Chinese robodogs include backdoor; OpenAI helps spammer; A Dutch data disaster; And more! Infosec In Brief Fortinet last week admitted that attackers have found new ways to exploit three flaws ...

The Chinese threat group, tracked as UAT-9686, has deployed a collection of custom-built hacking tools to maintain persistent access to compromised systems.

A new cyber-espionage threat group has been using a custom backdoor malware that provides persistent access through a seemingly inactive scheduled task. The threat actor's operations appear to support ...

An advanced persistent threat (APT) group, Flax Typhoon, was able to gain persistent access to the mapping tool ArcGIS for over a year, putting several enterprises at risk. ArcGIS is a geospatial ...

Russian state cyber-actor Seashell Blizzard has engaged a specialist initial access subgroup to increase its ability to compromise high-value targets globally, according to a new Microsoft report. The ...

Ransomware attackers are applying a significant focus on defense evasion tactics to increase dwell time in victim networks, according to a new report by Cisco Talos. This trend is a result of the ...