Over the past three months, our threat analysts have noticed a significant spike in attackers abusing Microsoft 365’s Direct Send feature—a tool intended for devices like printers or scanners to send ...

ClickFix abuses clipboards. FileFix hijacks File Explorer. Both social engineering attacks start in the browser—and end in ...

AttackIQ has released a new emulation that compiles the Tactics, Techniques, and Procedures (TTPs) associated with the ...

Russian defense firms hit by cyberattacks using EAGLET malware via phishing lures; threat actors linked to Head Mare and ...

Microsoft has issued a stark warning about a recent cyberattack targeting critical infrastructure, including the U.S.

Researchers first uncovered a sweeping cyber espionage operation targeting Microsoft server software affecting at least 100 ...

Hackers with ties to the Chinese government have been linked to a recent wave of widespread attacks targeting a Microsoft SharePoint zero-day vulnerability chain.

Active SharePoint exploits since July 7 target governments and tech firms globally, risking key theft and persistent access.

SharePoint flaws exploited in wild, no patch yet for 2016/2019 editions. Over 85 servers compromised globally since July 18.

AOL’s most legendary hacker built his seminal program through trial and error—the same way he rebuilt his life.

Newly published research shows that the domain name system—a fundamental part of the web—can be exploited to hide malicious ...