Criminal IP Integrates with IBM QRadar SIEM and SOAR for Faster Threat Response
Criminal IP now works directly with IBM QRadar SIEM and SOAR. This AI-powered threat intelligence platform enriches firewall logs and IP data in real time.…
Louis Vuitton, Dior, and Tiffany Fined $25 Million by South Korea for Data Breaches
South Korea’s Personal Information Protection Commission fined Louis Vuitton, Dior, and Tiffany a combined $25 million for poor security in their SaaS customer systems. The…
Fake Recruiters Hide Malware in Developer Coding Tests
North Korean hackers target JavaScript and Python developers with fake job offers. They hide malware in coding challenges posted on LinkedIn, Reddit, and Facebook. Victims…
2025 Spam and Phishing Report Reveals AI Surge and QR Code Quishing Boom
The 2025 Spam and Phishing Report shows a massive rise in AI-driven phishing attacks. Click-through rates hit 54% for AI-crafted emails, four times higher than…
OysterLoader Multi-Stage Loader Evades Detection, Links to Rhysida Ransomware
OysterLoader deploys through fake software sites mimicking PuTTY, WinSCP, and AI tools. This C++ loader uses four stages of obfuscation to drop payloads like Rhysida…
New XWorm RAT Phishing Campaign Exploits CVE-2018-0802 in Excel Attachments
A fresh phishing wave delivers XWorm RAT via business-themed emails with malicious Excel add-ins. Attackers exploit CVE-2018-0802 in Microsoft Equation Editor for initial code execution.…
Zimbra 10.1.16 Patch Fixes XSS, XXE, and LDAP Injection Flaws
Zimbra released version 10.1.16 on February 4, 2026. This security update patches high-severity issues in its email server. Admins face high deployment risk, so they…
OpenClaw 2026.2.12 Release Patches 40+ Vulnerabilities in AI Agents
OpenClaw 2026.2.12 brings critical security fixes for over 40 vulnerabilities in its AI agent platform. It targets risks like exposed agents, RCE chains, and unsafe…
New ClickFix Attack Targets Windows Users with StealC Malware
A new wave of ClickFix attacks tricks Windows users into running StealC stealer malware through fake CAPTCHA pages on hacked websites. Victims think they complete…
CISA Flags Actively Exploited Microsoft SCCM SQL Injection Vulnerability CVE-2024-43468
CISA added CVE-2024-43468, a critical SQL injection flaw in Microsoft Configuration Manager (SCCM), to its Known Exploited Vulnerabilities catalog on February 12, 2026. Federal agencies…
November 21, 2025
1 comment 
