AWS Default IAM Roles Found to Enable Lateral Movement and Cross-Service Exploitation
Cybersecurity researchers have discovered risky default identity and access management (IAM) roles impacting Amazon Web Services that could open the…
May 2025
ELPACO-Team Ransomware Attack Detection: Hackers Exploit Atlassian Confluence Vulnerability (CVE-2023-22527) to Gain RDP Access and Enable RCE
In today’s fast-evolving ransomware landscape, threat actors are accelerating their tactics to gain access and deploy payloads with alarming speed.…
NIST Moonlight Data Will Help Satellites Get a More Accurate Look at Earth
Reliable measurements of the light from our planet can help industries from agriculture to meteorology to mining.
Massive Stalkerware Apps Go Dark After Data Breach Exposes Millions of Users
A few apps categorized as stalkerware have gone dark after their services stopped working, and their websites disappeared overnight. Stalkerware…
DoorDash Hack
A DoorDash driver stole over $2.5 million over several months: The driver, Sayee Chaitainya Reddy Devagiri, placed expensive orders from…
The Crowded Battle: Key Insights from the 2025 State of Pentesting Report
In the newly released 2025 State of Pentesting Report, Pentera surveyed 500 CISOs from global enterprises (200 from within the…
South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom Malware
High-level government institutions in Sri Lanka, Bangladesh, and Pakistan have emerged as the target of a new campaign orchestrated by…
How to Hide Apps on iPhone: 101 Guide for Beginners
Smartphones are personal. And sometimes, even too personal. You've got so much going on there, don't you? A dating app,…
Use Google Calendar? Here’s the One Change That Can Protect Your Business from Scams
Millions of professionals and small businesses rely on Google Calendar to organize their workday. But what if that helpful calendar…
Chinese Hackers Deploy MarsSnake Backdoor in Multi-Year Attack on Saudi Organization
Threat hunters have exposed the tactics of a China-aligned threat actor called UnsolicitedBooker that targeted an unnamed international organization in…