SimpleHelp exploited by DragonForce ransomware group
CISA has issued a warning about the exploitation SimpleHelp RMM software by ransomware groups.
1 minute
Pieter Arntz
Atomic Stealer now using clipboard hijacking to target Macs
The infamous ClickFix campaign is targeting Mac users with Atomic Stealer (AMOS).
2 minutes
June 2025 Microsoft Patch Tuesday fixes two zero-days
Microsoft’s June Patch Tuesday fixes 67 vulnerabilities, including two zero-days, one of which is being actively exploited.
1 minute
Criminals smuggle phishing code in SVG images
Cybercriminals have started using SVG files in their phishing campaigns.
2 minutes
ThreatDown introduces auto-isolation
ThreatDown is the first security solution that offers three methods of auto-isolation.
2 minutes
When you shouldn’t trust a trusted root certificate
A trusted root certificate is the cornerstone of authentication and security on the Internet. But even this can be abused.…
5 minutes
May 2025 Patch Tuesday includes five zero-day vulnerabilities
Microsoft's May Patch Tuesday fixes 78 vulnerabilities, including five zero-days and two publicly disclosed flaws.
2 minutes
Introducing Browser Phishing Protection: enhanced web security for your organization
ThreatDown introduces Browser Phishing Protection to enhance web security
2 minutes
ThreatDown introduces Firewall Management
ThreatDown introduces Firewall Management for Windows workstations
2 minutes
Where malware likes to hide the most
We’ve identified the most common locations where malware hides—so you don’t have to.
2 minutes
Save our CVE! Last minute rescue for critical cybersecurity service
At the last possible moment, CISA confirms funding for the CVE program for another eleven months.
2 minutes
Has AI changed malicious script obfuscation techniques?
Obfuscation techniques have changing since generative AI became widely available.
3 minutes
Celebrating our Partners of the Year: recognizing excellence and innovation
Celebrating ThreatDown's partners of the year
2 minutes
One in five Fortune 500 companies had leaked credentials in the past 30 days
Stolen credentials can open the door for ransomware and Business Email Compromise (BEC).
1 minute
April 2025 Patch Tuesday includes one zero-day
April’s Patch Tuesday fixes a whopping 126 Microsoft vulnerabilities.
2 minutes
Fake Booking.com emails target hotels
A new phishing campaign is using a famous brand to compromise hotels.
1 minute
Ransomware group Mora_001 targets Fortinet applications
The new gang appears to have links to the defunct LockBit group.
2 minutes
Product of the Year! AVLab honors ThreatDown Endpoint Protection
ThreatDown Endpoint Protection has been awarded AVLab's Product of the Year for the third consecutive year.
1 minute
March 2025 Patch Tuesday, severity over quantity
The March 2025 Patch Tuesday update contains an unusually large number of zero-day vulnerabilities that are being actively exploited.
3 minutes
Phishers go “interplanetary” to get company login credentials
An ongoing campaign to harvest company login credentials is using IPFS to host its phishing pages.
1 minute
