Security Boulevard

That “job brief” on Google Forms could infect your device

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain. The attack typically begins when a victim downloads a business-themed ZIP ...
healthcareinfosecurity.com

Multi-Month Cyberespionage Campaign Hits Libyan Oil Refinery

Threat researchers at Symantec and Carbon Black said the activity ran from November 2025 to mid-February, with evidence that ...
Dark Reading

Less Lucrative Ransomware Market Makes Attackers Alter Methods

Ransomware actors are ditching Cobalt Strike in favor of native Windows tools, as payment rates hit record lows and data theft surges.

Amazon security boss says crims abused max-security Cisco firewall flaw weeks before disclosure

Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco Secure Firewall Management Center software, as a zero-day vulnerability more than a month before Cisco patched the hole, ...
Windows Report

How OpenClaw and API-Driven Workflows Are Redefining Windows Productivity

Windows has always been built for power users who automate. Now, OpenClaw and cloud APIs like WayinVideo are ushering in a new era of truly autonomous desktop workflows — here's what that looks like ...
CSO Online

ClickFix techniques evolve in new infostealer campaigns

Recent social engineering schemes involving WordPress and Microsoft’s Windows Terminal show that this relatively basic tactic is a growing threat.
IT-Online

Rethinking antivirus in a modern security landscape

Antivirus has come a long way since its early signature-based roots, but even the most advanced versions cannot keep up with the speed and complexity of current cyber threats. By Ivaan Captieux, ...
Arabian Post

Horabot resurfaces in Mexico phishing wave

A banking malware strain known as Horabot has re-emerged in Mexico with a more sophisticated infection chain, combining phishing emails, deceptive CAPTCHA prompts and automated email propagation ...
Channel Buzz

Firewalls, rogue devices, and your own tools: what Barracuda’s threat report means for MSPs

Every year, security vendors publish threat reports. Most say variations of the same thing. But Barracuda’s Managed XDR Global Threat Report stands out for a reason that matters to MSPs: it’s built on ...
Microsoft

When tax season becomes cyberattack season: Phishing and malware campaigns using tax-related lures

During tax season, threat actors reliably take advantage of the urgency and familiarity of time-sensitive emails, including ...
Infosecurity Magazine

Ransomware Affiliate Exposes Details of 'The Gentlemen' Operation

A ransomware affiliate known as 'hastalamuerte' has revealed operational details about a group called The Gentlemen , shedding light on its tactics, techniques and internal disputes.
Windows Latest

Windows 11 uses five letters of your email for the user folder, but Microsoft is fixing it

Windows 11 now lets users choose their default user folder name during setup. The new OOBE option fixes the 5-letter folder issue.