The Vo1d botnet is now powered by 1.6 million Android TV devices, up from 1.3 million half a year ago. The post Vo1d Botnet Evolves as It Ensnares 1.6 Million Android TV Boxes appeared first on SecurityWeek.
An analysis of global ransomware activity reveals ransomware incidents reached record levels in 2024.
Web shells have evolved far beyond their original purpose of basic remote command execution, and many now function more like lightweight exploitation frameworks. These tools often include features such as in-memory module execution and encrypted command-and-control (C2) communication, giving attackers flexibility while minimizing their footprint. This article walks through aRead More »The SOC files: Chasing the web shell
CrowdStrike has published its 2025 Global Threat Report, which warns of faster breakout time and an increase in Chinese activity. The post 26 New Threat Groups Spotted in 2024: CrowdStrike appeared first on SecurityWeek.
Interesting research: “Emergent Misalignment: Narrow finetuning can produce broadly misaligned LLMs“: Abstract: We present a surprising result regarding LLMs and alignment. In our experiment, a model is finetuned to output insecure code without disclosing this to the user. The resulting model acts misaligned on a broad range of prompts thatRead More »“Emergent Misalignment” in LLMs
A Singaporean man accused of being a hacker responsible for over 90 data leaks has been arrested in Thailand. The post Hacker Behind Over 90 Data Leaks Arrested in Thailand appeared first on SecurityWeek.
MITRE Caldera security advisory warns of maximum severity flaw, and experts weigh share their insights.
The current state of regulation and the overwhelming burden it brings to most enterprises is a discussion worth having The post The Hidden Cost of Compliance: When Regulations Weaken Security appeared first on SecurityWeek.
XSS vulnerability allowed a threat actor to redirect users to arbitrary domains. The post Sites of Major Orgs Abused in Spam Campaign Exploiting Virtual Tour Software Flaw appeared first on SecurityWeek.
A U.S. Army soldier who pleaded guilty last week to leaking phone records for high-ranking U.S. government officials searched online for non-extradition countries and for an answer to the question “can hacking be treason?” prosecutors in the case said Wednesday. The government disclosed the details in a court motion toRead More »U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”
