Researchers revealed a NuGet package, “Tracer.Fody.NLog,” disguising as a popular .NET library, which concealed a cryptocurrency wallet stealer. Initially published
Amazon’s Threat Intelligence team successfully disabled operations related to Russian GRU hackers, focusing on customer cloud infrastructure security and thwarting
A cryptocurrency mining campaign targets AWS customers by exploiting stolen Identity and Access Management credentials. Detected by Amazon’s GuardDuty, the
A cybercriminal’s holiday dream, SantaStealer, a new information-stealing malware, promises undetected operation on systems of high-profile targets, advertised on Telegram
The Texas Attorney General has taken legal action against five major television manufacturers, alleging violation of data privacy. The lawsuit
The European Central Bank’s (ECB) 2022 postponement of a new messaging standard forced the Bank of England to delay its
The August cyber raid on Jaguar Land Rover (JLR) had a dual impact, crippling factory operations and resulting in the
Google has reported exploitation of the React2Shell vulnerability by five Chinese threat actor groups and Iranian operatives, aiming to deliver
Atlassian has released security updates targeting multiple vulnerabilities, including critical-severity issues in products like Apache Tika. One major flaw is
FreePBX, an open-source private branch exchange (PBX) platform, has multiple security vulnerabilities. A critical flaw (CVE-2025-61675) allows authentication bypass under
Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.