My Courses
-
ShadowSilk attacks Asia-Pacific government targets via Telegram bots
A threat activity cluster known as ShadowSilk has been linked to a new wave of attacks targeting government entities in Central Asia and the Asia-Pacific…
-
Energy industry needs to be vigilant about cyberattacks
The energy sector remains a significant target for cybercriminals, with power outages posing threats to economic stability and public safety. The rising demand for electricity,…
-
AI agents vulnerable to prompt injection via image scaling attacks
Researchers have uncovered a significant vulnerability in popular AI systems, demonstrating that these technologies can be manipulated into executing malicious instructions concealed within images. This…
-
ShadowCaptcha distributing ransomware & cryptominers via compromised WordPress sites
A new large-scale cybercrime campaign, codenamed ShadowCaptcha, has been identified, exploiting over 100 compromised WordPress sites. This campaign, first detected in August 2025 by the…
-
HOOK Android Trojan incorporates ransomware overlays & 107 remote commands
Cybersecurity researchers have identified a new variant of an Android banking trojan named HOOK, which incorporates ransomware-style overlay screens to display extortion messages. A key…
-
Docker vulnerability (CVE-2025-9074) allows container escape, assigned CVSS of 9.3
Docker has released critical fixes for a significant security vulnerability affecting the Docker Desktop application for Windows and macOS. This flaw, identified as CVE-2025-9074, has…
-
Diplomats targeted by UNC6384 through captive portal hijacking
A China-nexus threat actor known as UNC6384 has been linked to a series of attacks aimed at diplomats in Southeast Asia and various global entities…
-
Phishing Attack Employs UpCrypter in Fraudulent Voicemail Emails to Distribute RAT Payloads.
Cybersecurity researchers have identified a new phishing campaign that employs fake voicemails and purchase orders to distribute a malware loader known as UpCrypter. The campaign…
-
Transparent Tribe spear-phishing Indian government using weaponised desktop shortcuts
The advanced persistent threat (APT) actor known as Transparent Tribe has been observed targeting both Windows and BOSS (Bharat Operating System Solutions) Linux systems with…
-
MixShell malware spreading through US supply chains via contact forms
Cybersecurity researchers have raised alarms about a sophisticated social engineering campaign targeting supply chain-critical manufacturing companies with a stealthy in-memory malware known as MixShell. Codenamed…
