Vulnerable U
Infosec's favorite weekly newsletter for news, tools, and tips with 28,000+ CISOs, founders, change-makers, and straight up hackers.
Connect
Analysis of leaked builds, chat logs and wallet tables uncovers how new affiliates fuel global ransomware attacks.
ASUS botnet, Everything is a C2 (even you're calendar), Bitcoin related kidnappings and violence continue, Fake AI Video Generators are delivering malware, and much more!
How attackers use clipboard PowerShell stagers and brand-spoofed links to bypass macros and drop a .NET RAT.
Treasury’s May 29 action freezes Funnull’s IP pools and prefab scam kits. An estimated $200 million in U.S. losses tied to this turnkey infrastructure provider.
Analysis of the May 28 breach shows tight scope but zero transparency. Here’s what MSPs must do to validate their defenses.
Analysis of UNC6032’s Facebook and LinkedIn ad blitz shows social-engineered ZIPs leading to multi-stage Python and DLL side-loading toolkits
The new Microsoft report links the Russia-backed group to cookie-theft proxies and mass mailbox exports across critical sectors in Europe and North America.
Microsoft massive malware takedown, Russia hacking Ukraine logistics targets, 100s of fake Chrome extensions, and much more!
Microsoft Seizes 2,300 Lumma Stealer Domains in Global Takedown. Here's what you need to know.
Coinbase breached by insider threat, North Korean IT Workers unmasked, Deepdive into passkeys, AI Note taking app security nightmare, and much more!
The two vulnerabilities can be chained together to gain RCE
Impact limited to TestFlight users; bug fixed before public release.
