CISA Adds 8 Exploited Flaws to KEV, Sets April-May 2026 Federal Deadlines
Ravie LakshmananApr 21, 2026Network Security / Threat Intelligence [...]
How Attackers Walk Through the Front Door via Identity-Based Attacks
The cybersecurity industry has spent the last several [...]
Telegram tdata as a Credential Harvesting Vector, Lessons from a Honeypot Incident
[This is a Guest Diary by L. Carty, [...]
NGate Campaign Targets Brazil, Trojanizes HandyPay to Steal NFC Data and PINs
Ravie LakshmananApr 21, 2026Mobile Security / Artificial Intelligence [...]
The Gentlemen Ransomware Expands With Rapid Affiliate Growth
A rapidly expanding ransomware-as-a-service (RaaS) operation has claimed [...]
5 Places where Mature SOCs Keep MTTR Fast and Others Waste Time
Security teams often present MTTR as an internal [...]
Vercel Hack, Push Fraud, QEMU Abused, New Android RATs Emerge & More
Ravie LakshmananApr 20, 2026Cybersecurity / Hacking Monday’s recap [...]
NIST Drops NVD Enrichment for Pre-March 2026 Vulnerabilities
The team behind the US National Vulnerability Database [...]
The Architecture Exposure Validation Requires
Few technologies have moved from experimentation to boardroom [...]
Google Warns of New Threat Group Targeting BPOs and Helpdesks
A new threat group is targeting business process [...]