Security Bulletin

The remote access trojan creates a second hidden desktop to control the victim’s browser.

New joint research by Wiz and AI-as-a-service provider Hugging Face find that a malicious pickle-serialized model could contain a remote execution payload.

The North American accommodation group is still investigating the impact of the Easter weekend disruptions.

Security practitioners share what they've learned in the push for better cloud security.

Artificial intelligence is believed by 63% of IT and security professionals to be beneficial to their organizations' security posture, ZDNET reports.

Threat actors could leverage the novel HTTP/2 Continuation Flood denial-of-service attack technique to facilitate DDoS attacks more severe than record-breaking intrusions enabled by the Rapid Reset approach last year, according to SecurityWeek.

Russia had its prosecutor general's website claimed to be compromised by Russian-speaking hacktivist operation RGB-TEAM, which admitted stealing a trove of data, including an archive with 100,000 Russian criminal records between 1993 and 2022 that...

More than 4.4 million SurveyLama users had their data compromised following a breach impacting the French-owned survey rewards platform in February, SecurityWeek reports.

Major Japanese global optical products manufacturer Hoya Corporation had operations of some production plants and its ordering system disrupted after a cyberattack against its servers on Mar. 30, according to BleepingComputer.

China, India, South Korea, Indonesia, Vietnam, Bangladesh, and Pakistan have been subjected to attacks by suspected Vietnamese threat operation CoralRaider, which involved the delivery of the QuasarRAT variant dubbed RotBot and the XClient...

BleepingComputer reports that phishing attacks with an updated JSOutProx remote access trojan variant have been deployed against financial entities in South and Southeast Asia, the Middle East, and Africa.