The emerging ransomware has been deployed in the TeamPCP supply chain attacks, but victims should think twice before paying ...

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.

Fake Antigravity downloads are enabling fast account takeovers using hidden malware and stolen session cookies.

UNC6692 has been attributed to a large email campaign that's designed to overwhelm a target's inbox with a flood of spam ...

Threat actors are abusing external Microsoft Teams collaboration to impersonate IT helpdesk staff and convince users to grant ...

A new malware family named 'AgingFly' has been identified in attacks against local governments and hospitals that steal ...

Overview On April 15, NSFOCUS CERT detected that Microsoft released the April Security Update patch, fixing 165 security issues involving Windows, Microsoft Office, Microsoft SQL Server, Microsoft ...

CERT-UA links the AgingFly credential-stealing campaign to phishing, browser theft, and modular remote access.

Arctic Wolf attributed this large-scale spear-phishing campaign to BlueNoroff, a financially motivated subgroup of the ...

Two separate phishing campaigns are hitting organisations with Formbook, a long-running information stealer that continues to adapt its delivery methods to slip past traditional Windows defences. The ...

Microsoft has fixed 167 vulnerabilities in its April 2026 Patch Tuesday update, including an actively exploited SharePoint Server zero-day and a Defender flaw.

Veeam Backup & Replication (VBR) continues to set the pace in enterprise data resilience. With v13 having landed in November ...