Nearly 900 spoofed domains impersonate defense and aerospace firms supporting Ukraine. Credential theft and malware delivery linked to large phishing ops.
Russia is abusing domain registrars to run global disinformation campaigns. Learn how spoofed infrastructure enables phishing, propaganda, and evasion.
Attackers are hiding malware in WordPress mu-plugins, bypassing detection and gaining persistent access. Learn how it works and how to secure your site.
SignalGate, Next.js auth vuln, Kubernetes major RCE bug, Chinese shell companies hiring laid off gov employees, and much more!
More CISA DOGE drama, US softening on Russia cyber defenses, 60M malware app downloads from Google Play Store, Massive Github supply chain hack, and much more!
CISA having a bad time, Microsoft and Google Threat Intel full of goodies this week, SSRF on the rise as per GreyNoise, and much more!