Blog

Your blog category

Blog

Handala Wiper Attack

What is the Attack? A large-scale cyberattack against medical technology company Stryker resulted in widespread system outages. The attack was driven by a destructive wiper campaign attributed to Iran-linked threat actors, including the hacktivist group Handala. Following the incident, CISA issued an alert highlighting the compromise of endpoint management infrastructure- specifically platforms such as Microsoft…

Read More Handala Wiper Attack
Blog

AI Conundrum: Why MCP Security Can’t Be Patched Away

MCP introduces security risks into LLM environments that are architectural and not easily fixable, researcher says at RSAC 2026 Conference.

Read More AI Conundrum: Why MCP Security Can’t Be Patched Away
Blog

With Government’s Role Uncertain, Businesses Unite to Combat Fraud

Major industry leaders agree to share information and collaborate to boost defenses in the wake of distressing online scams.

Read More With Government’s Role Uncertain, Businesses Unite to Combat Fraud
Blog

Native Launches With Security Control Plane for Multicloud

The cloud security startup’s platform translates and enforces security policies across AWS, Azure, Google Cloud and Oracle using provider-native controls.

Read More Native Launches With Security Control Plane for Multicloud
Blog

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers

Cybersecurity researchers have flagged a new malware dubbed Speagle that hijacks the functionality and infrastructure of a legitimate program called Cobra DocGuard. “Speagle is designed to surreptitiously harvest sensitive information from infected computers and transmit it to a Cobra DocGuard server that has been compromised by the attackers, masking the data exfiltration process as legitimate

Read More Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers
Blog

54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security

A new analysis of endpoint detection and response (EDR) killers has revealed that 54 of them leverage a technique known as bring your own vulnerable driver (BYOVD) by abusing a total of 34 vulnerable drivers. EDR killer programs have been a common presence in ransomware intrusions as they offer a way for affiliates to neutralize…

Read More 54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security
Blog

Post-Quantum Web Could be Safer, Faster

Major providers are testing a quantum-safe version of HTTPS that shrinks certificates to a tenth their previous size, decreasing latency and adding transparency.

Read More Post-Quantum Web Could be Safer, Faster
Blog

[Virtual Event] Shields Up: Key Technologies Reshaping Cybersecurity Defenses

Post Content

Read More [Virtual Event] Shields Up: Key Technologies Reshaping Cybersecurity Defenses
Blog

ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More

ThreatsDay Bulletin is back on The Hacker News, and this week feels off in a familiar way. Nothing loud, nothing breaking everything at once. Just a lot of small things that shouldn’t work anymore but still do. Some of it looks simple, almost sloppy, until you see how well it lands. Other bits feel a…

Read More ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More
Blog

New Perseus Android Banking Malware Monitors Notes Apps to Extract Sensitive Data

Cybersecurity researchers have disclosed a new Android malware family called Perseus that’s being actively distributed in the wild with an aim to conduct device takeover (DTO) and financial fraud. Perseus is built upon the foundations of Cerberus and Phoenix, at the same time evolving into a “more flexible and capable platform” for compromising Android devices…

Read More New Perseus Android Banking Malware Monitors Notes Apps to Extract Sensitive Data