Is that a JuicyPotato on your network? A suspected Chinese-government-backed cyber crew recently broke into a Taiwanese web ...

UAT-7237 exploits unpatched Taiwan servers using SoundBill, Cobalt Strike, and SoftEther VPN for persistent control.

Detecting advanced persistent threats (APTs) at a host via data provenance has emerged as a valuable yet challenging task. Compared with attack rule matching, machine learning approaches offer new ...

Charon uses encrypted payloads and trusted binaries to bypass EDR defenses, marking a shift toward stealthier, more ...

Charon ransomware targets Middle East sectors using APT-style evasion, causing faster, harder-to-recover encryption.

IT leaders must know how to anticipate cyberattacks and defend their organizations, even as artificial intelligence makes ...

A Russian-aligned hacking group has been identified targeting government bodies and energy sectors in Eastern Europe.

Developed by Microsoft Research and the Defender teams, Project Ire utilizes advanced reasoning and reverse engineering tools ...

Project Ire promises to use LLMs to detect whether code is malicious or benign UPDATED Microsoft has rolled out an autonomous ...

In an era of cutting-edge technology, where fifth-generation fighter jets and long-endurance surveillance aircraft dominate the skies, a surprisingly primitive problem continues to affect military ...

As detailed in the H2 2025 Cloud Threat Horizons Report, Google’s researchers have observed advanced persistent threat groups, including UNC3944, UNC2165 and UNC4393.