Save our CVE! Last minute rescue for critical cybersecurity service
At the last possible moment, CISA confirms funding for the CVE program for another eleven months.
2 minutes
Pieter Arntz
Has AI changed malicious script obfuscation techniques?
Obfuscation techniques have changing since generative AI became widely available.
3 minutes
Celebrating our Partners of the Year: recognizing excellence and innovation
Celebrating ThreatDown's partners of the year
2 minutes
One in five Fortune 500 companies had leaked credentials in the past 30 days
Stolen credentials can open the door for ransomware and Business Email Compromise (BEC).
1 minute
April 2025 Patch Tuesday includes one zero-day
April’s Patch Tuesday fixes a whopping 126 Microsoft vulnerabilities.
2 minutes
Fake Booking.com emails target hotels
A new phishing campaign is using a famous brand to compromise hotels.
1 minute
Ransomware group Mora_001 targets Fortinet applications
The new gang appears to have links to the defunct LockBit group.
2 minutes
Product of the Year! AVLab honors ThreatDown Endpoint Protection
ThreatDown Endpoint Protection has been awarded AVLab's Product of the Year for the third consecutive year.
1 minute
March 2025 Patch Tuesday, severity over quantity
The March 2025 Patch Tuesday update contains an unusually large number of zero-day vulnerabilities that are being actively exploited.
3 minutes
Phishers go “interplanetary” to get company login credentials
An ongoing campaign to harvest company login credentials is using IPFS to host its phishing pages.
1 minute
Infighting brings down the Black Basta ransomware group
It seems that internal struggles lead to the break-down of one of the last ransomware-as-a-service giants.
2 minutes
“Enhanced Bonus” QR code phish steals Microsoft credentials
A personalized phishing attack could lead to a catastrophic loss of credentials.
2 minutes
USB worms: Still wriggling on to under-protected computers after all these years
Malware doesn't care if it's being talked about or not.
2 minutes
Four zero-days in February’s Patch Tuesday
February 2025's Patch Tuesday seems relatively relaxed, but there’s a catch for organizations using NTLM.
2 minutes
Analyzing a Mispadu Trojan’s attack chain
We tracked a Mispadu banking Trojan infection from the email attachment to the payload.
1 minute
ThreatDown State of Malware report 2025
The ThreatDown State of Malware report focuses on a few key developments that we witnessed in 2024.
2 minutes
How a clipboard hijacker delivers Lumma Stealer
The use of fake Captcha websites has doubled in only a few months.
3 minutes
8 zero-days in one Patch Tuesday? Welcome to 2025
The January 2025 Patch Tuesday consists of 159 Microsoft CVEs, including three that are actively exploited.
2 minutes
Web shop spreads SocGolish malware and steals credit cards
A web shop selling jewelry was found with code belonging to two web skimmers and the SocGolish Trojan downloader.
2 minutes
