Over 1,000 exposed ComfyUI instances exploited via unauthenticated code execution, enabling Monero mining and botnet expansion.

A single unauthenticated connection gives attackers a full shell; credential theft observed in under three minutes on honeypot servers.

The Justice Department said the Department of Defense Office of Inspector General’s (DoDIG) Defense Criminal Investigative Service (DCIS) executed seizure warrants targeting multiple U.S.-registered ...

Authorities from the United States, Germany, and Canada have taken down Command and Control (C2) infrastructure used by the Aisuru, KimWolf, JackSkid, and Mossad botnets to infect Internet of Things ...

DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...

Distributed Denial-of-Service (DDoS) attacks on UAE organisations tripled in the second half of 2025, raising operational risk to digitally connected organizations and enterprises, a report showed.

There's a new type of malware going around, and it has so far infected over 14,000 devices, according to new reports from the Black Lotus Labs team at Lumen. The malware, which is being called KadNap, ...

A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged ...

The Aisuru, Kimwolf, JackSkid, and Mossad botnets had infected more than 3 million devices in total, many inside home networks, according to the US Justice Department. The collection of millions of ...

Washington DC [US], March 26 (ANI): A significant cyberattack aimed at Uyghur Post has been detected and reported to U.S. authorities, following several days of disruption caused by what experts have ...