In a case that redefines the boundaries of modern cybercrime, a threat actor known as UNC2891 has carried out a multi-vector cyber-heist targeting ATM infrastructure across several banking institutions. Group-IB’sRead More →
In a bold move to counter the growing number of open-source software supply chain attacks, Google has launched OSS Rebuild, a program designed to automatically rebuild OSS packages in isolatedRead More →
Data is now the most targeted asset in cyberattacks, and organizations are investing heavily in securing it. Data Security Posture Management (DSPM) is a key tool. It helps monitor andRead More →
A set of four Bluetooth vulnerabilities dubbed “PerfektBlue”, discovered by researchers at PCA Cyber Security, expose a critical weakness in the BlueSDK Bluetooth stack developed by OpenSynergy. This stack isRead More →
In one of the most significant insider-assisted cyberattacks in Brazil’s financial history, a low-level IT operator working at C&M Software—a company that links smaller banks to Brazil’s PIX real-time paymentRead More →
In a recent threat intelligence disclosure, Okta has identified the misuse of Vercel’s v0.dev, a generative AI-powered interface builder, by malicious actors to construct sophisticated phishing websites. These sites areRead More →
The educational landscape has undergone a dramatic transformation with the widespread adoption of artificial intelligence writing tools. While these technologies offer exciting possibilities for learning and creativity, they also presentRead More →
Citrix has disclosed two high-impact vulnerabilities—CVE-2025-5777 (dubbed CitrixBleed 2) and CVE-2025-5349—affecting NetScaler ADC and Gateway appliances. These flaws, particularly CitrixBleed 2, enable unauthenticated attackers to extract sensitive session data directlyRead More →
A new evasion technique called “TokenBreak” has been discovered that effectively bypasses AI-based content moderation systems—including those used in popular AI models, chatbots, and content filters. This method works byRead More →
The breach, discovered in January 2025 but disclosed publicly in May, involved two India-based TaskUs employees who were bribed and recruited by cybercriminals to leak customer data. One of theRead More →
