New @Mandiant research: UNC6032 (Vietnam-nexus actor 🇻🇳) is exploiting interest in AI tools, using fake AI video generator sites & malicious ads to spread malware. The campaign, active since mid-2024, aims to steal credentials, cookies & financial data.

RT @Mandiant: UNC3944 is deploying ransomware directly from VMware hypervisors, bypassing traditional defenses. Here’s an expert-led webin….

RT @BleepinComputer: BleepingComputer has learned that a wave of data breaches impacting companies like Qantas, Allianz Life, LVMH, and Adi….

RT @vxunderground: Something interesting happened. The United Kingdom Ministry of Justice (UK MoJ) e-mailed UNC6040 (ShinyHunters and/or U….

RT @Mandiant: The 12th Annual Flare-On Challenge kicks off Sept 26 at 8PM EST!. Reverse engineering pros, from Windows to Web3 (with a YARA….

RT @_WOO_X: Update 6: We’ve been working with @Mandiant to perform a comprehensive investigation of the incident. Their deep expertise in c….

RT @vxunderground: Tea App, the recent trending app which allowed women to anonymously rate or discuss men, has been compromised. The appl….

RT @jamieantisocial: this part is brutal.

RT @ericgeller: Confirming @NextgovFCW's reporting here on SharePoint victims: "DHS was impacted and over a dozen….

RT @irsdl: I originally had Gemini expecting a 200 OK instead of a 401, but after dropping a server-side breakpoint so it could use a timeo….

RT @JumpforJoyce: Google Threat Intel is tracking widespread exploitation of on-prem SharePoint vulns: CVE-2025-53770 & CVE-2025-53771.….

RT @leak_ix: Just a heads-up, attackers found a way to leak information, including keys entirely from memory. Checking for "the file" is no….

RT @vxunderground: Per French authorities — the suspected administrator of XSS has been arrested in Ukraine .

RT @ddimolfetta: 🇨🇳SharePoint vulnerability update: "We assess that at least one of the actors responsible for this early exploitation is a….

RT @msftsecresponse: Update on CVE-2025-53770: Microsoft has released a security update for SharePoint Subscription Edition to mitigate act….

RT @msftsecresponse: Microsoft is aware of active attacks targeting on-premises SharePoint Server customers, exploiting a variant of CVE-20….

RT @DakotaInDC: Catch me on All Things Considered

RT @DakotaInDC: You know the report is going to be a banger with a quote like this on the cover. @eubenincasa's latest report Before Vega….

RT @Europol: 🚨 Operation Eastwood targets pro-Russian cybercrime network NoName057(16) and shuts down over one hundred criminal servers in….

RT @Mandiant: A financially motivated threat actor, #UNC6148, is targeting fully patched, end-of-life SonicWall SMA 100 appliances. In th….

RT @sundarpichai: New from our security teams: Our AI agent Big Sleep helped us detect and foil an imminent exploit. We believe this is a f….