threats

Researchers have discovered several potential attack vectors targeting bicycles fitted with Shimano Di2 wireless gear-shifting system.

Fraudsters are using AI-generated digital clones to bypass Know Your Customer (KYC) procedures and open money laundering accounts.

Telegram bot sells subscriptions to phishing tools to hack Microsoft 365 accounts, including 2FA bypass.

Small beacons like AirTag make it easy to find a lost wallet or keys — but are also often used for covert tracking. Now you can detect stalkers and protect yourself — regardless of what kind of smartphone you have.

Cybercriminals are using AitM techniques to compromise accounts of company executives. How do they do this, and how to protect against it?

“Gentle grafters” are attacking dishonest crypto users by imitating wallet leaks and manipulating their victims for months.

Scammers prepared carefully for this very sporty summer. First they targeted soccer fans during the Euros; now they’re setting their sights on spectators at the Paris 2024 Olympics. How can you stay safe from scams during the Games?

The story of how CrowdStrike released an update on a Friday and brought down thousands, tens of thousands, or maybe even hundreds of thousands of computers around the world.

How attitudes are changing toward intimate image abuse.

The masterminds behind the colossal botnet encompassing 19 million IP addresses used free VPN services as bait to lure unsuspecting users.

A zero-day vulnerability actively exploited by attackers has been discovered in Internet Explorer — the browser that Microsoft supposedly laid to rest over a year ago.

The JavaScript CDN service Polyfill.io has started spreading malicious code. Remove the service’s script from your website.

Developers’ accounts are being hijacked using fake job offers sent from a legitimate GitHub address.

A new phishing technique uses progressive web apps (PWAs) to mimic browser windows with convincing web addresses to steal passwords.

Tips on how to watch the UEFA Euro 2024 tournament while keeping your money safe and your mood good.

Cybercriminals are using genuine Facebook infrastructure to send phishing emails threatening to block accounts.

Fake tech-support has long been a trend in fraud worldwide. We explain how it works, and what you can do to protect yourself.

Vehicle makers sell the data collected by connected cars about their users’ driving habits to data brokers – who resell it to insurance companies.

Kaspersky ICS-CERT experts have discovered several critical vulnerabilities in Telit Cinterion M2M modems, which are used in millions of devices.

What are the most common MITRE ATT&CK techniques encountered in real-world incidents — and how to neutralize them? We investigate using statistics from Incident Response and MDR services!

Can you catch malware by downloading files from Microsoft’s repositories on GitHub? Turns out, you can. Stay alert!