Technology ❯ Information Security

Threat Intelligence

Attack Vectors Cyber Threats Malware Incident Response Malware Analysis Vulnerability Management Hacking Techniques Indicators of Compromise Active Exploitation Microsoft

Ivanti Patches EPMM Zero‑Day Under Active Exploitation as CISA Orders Fix by May 10

Federal agencies face a May 10 patch deadline set by CISA in response to the zero‑day’s confirmed use.

Trellix Says Hackers Accessed Part of Its Source Code Repository

Malware-Laced Updates Hit SAP-Linked npm Packages, Steal Developer and CI Secrets

CrowdStrike Extends Real-Time Cloud Detection to Google Cloud

Sweden Says Pro-Russian Hackers Tried to Sabotage Heating Plant in 2025

Nginx UI Auth Bypass Now Actively Exploited for Full Server Takeover

Google Says UNC6783 Is Hitting BPO Helpdesks With Okta Phishing

Microsoft Links China-Linked Storm-1175 to Fast Zero-Day Exploits in Medusa Ransomware Campaigns

Apple Urges Immediate iPhone Updates as DarkSword Web Exploit Targets Older iOS

Apple Pushes Rare iOS 15/16 Security Updates to Block ‘Coruna’ Exploit on Older Devices

Flare Uncovers 'SSHStalker' Linux Botnet Using IRC Control and 2009-Era Exploits

Match Group Investigates ShinyHunters Leak Claim Linked to Okta SSO Attack

Microsoft Issues Emergency Patches for Exploited Office Zero-Day CVE-2026-21509

Cisco Patches ISE File-Read Flaw After Public Exploit

FBI Warns Deepfake 'Proof‑of‑Life' Images Are Fueling Virtual Kidnapping Scams

Shai-Hulud npm Worm Exposes 25,000+ GitHub Repos Through Trojanized Packages

CISA Adds Oracle Identity Manager RCE to KEV, Citing Active Exploitation and Setting Dec. 12 Deadline

WrtHug Campaign Hijacks About 50,000 ASUS Routers Worldwide

Oracle Rushes Fix as Cl0p’s Exploitation of E‑Business Suite Zero‑Day Dates to August

Microsoft Links Medusa Affiliate to Exploits of Critical GoAnywhere Flaw