A recently discovered vulnerability in the popular WinRAR archiving software (CVE-2025-31334) is causing a stir: It allows attackers to bypass the security warnings integrated into Windows - known as "Mark of the Web" (MotW).
More and more free file converters on the Internet are turning out to be treacherous traps. The FBI warns of manipulated online tools that not only convert files, but also smuggle malware or even ransomware onto victims' computers. Converters for documents, music files and file mergers are particularly affected.
After a long period of dormancy, the Chinese hacker group FamousSparrow is active again. According to the IT security company ESET, the group has become increasingly dangerous and has deployed new, sophisticated espionage tools.
Onapsis Research Labs has made an alarming discovery: the SAP vulnerability CVE-2017-12637 is currently being actively exploited. Cybercriminals are using the vulnerability to gain access to critical SAP configuration files - with potentially devastating consequences.
Cyber criminals have managed to bypass Android's security mechanisms and infect over 60 million users worldwide with malware. Experts from Bitdefender Labs discovered a large-scale malware campaign with over 330 infected apps.
The ransomware group BlackBasta has developed a powerful tool to automate brute force attacks on edge network devices such as firewalls and VPNs. The framework, called "BRUTED", allows attackers to crack targeted credentials and scale ransomware attacks on vulnerable networks.
In January 2025, Arctic Wolf's threat research team observed suspicious activity on Fortinet FortiGate firewall devices being exploited by the new SuperBlack ransomware. This vulnerability could jeopardize companies that have not yet applied the patch and highlights the growing threat of targeted cyberattacks.
Researchers from IT security company ESET have uncovered a serious security vulnerability (CVE-2025-24983) in older versions of Windows. The vulnerability allowed hackers to execute malicious code on affected computers using a zero-day exploit.
Following an intensive investigation dating back to mid-2024, the security company Mandiant has uncovered a covert espionage campaign by the China-linked group UNC3886. Specially developed malware was discovered on decommissioned Junos OS routers from Juniper Networks.
The notorious advanced persistent threat (APT) group SideWinder has refined its attack tactics and significantly expanded its geographical reach. According to recent analyses by Kaspersky, the group is now specifically targeting nuclear power plants and energy facilities.
Thought Leadership