From a flurry of attacks targeting UK retailers to campaigns corralling end-of-life routers into botnets, it's a wrap on another month filled with impactful cybersecurity news

WeLiveSecurity

29.05.2025

Don’t give your personal data to fraudsters: Dodging Docusign scam emails

Cybercriminals are using fake Docusign-themed documents and links to trick people into giving away their personal or corporate data.

WeLiveSecurity

25.05.2025

Danabot under the microscope

ESET Research has been tracking Danabot’s activity since 2018 as part of a global effort that resulted in a major disruption of the malware’s infrastructure.

WeLiveSecurity

24.05.2025

Lumma Stealer down for the count

The bustling enterprise, recently disrupted by a global effort including ESET, is notorious for going after all manner of sensitive data, including passwords, credit card numbers, and cryptowallet info.

WeLiveSecurity

24.05.2025

Danabot: Analyzing a fallen empire

ESET Research shares its findings on the workings of Danabot, an infostealer recently disrupted in a multinational law enforcement operation.

WeLiveSecurity

23.05.2025

ESET takes part in global operation to disrupt Lumma Stealer

Our intense monitoring of tens of thousands of malicious samples helped this global disruption operation

WeLiveSecurity

21.05.2025

ESET APT Activity Report Q4 2024–Q1 2025: Key findings

ESET Chief Security Evangelist Tony Anscombe highlights key findings from the latest ESET APT Activity Report

WeLiveSecurity

21.05.2025

ESET APT Activity Report Q4 2024–Q1 2025

This issue of the ESET APT Activity Report reviews notable activities of APT group that were documented by ESET researchers from October 2024 until March 2025.

WeLiveSecurity

17.05.2025

Operation RoundPress targeting high-value webmail servers

ESET researchers uncover a Russia-aligned espionage operation that they named RoundPress and that targets webmail servers via XSS vulnerabilities.

WeLiveSecurity

17.05.2025

Sednit abuses XSS flaws to hit gov't entities, defense companies

Operation RoundPress exploits security holes in webmail software to target Ukrainian governmental entities and defense companies in Eastern Europe.

WeLiveSecurity

14.05.2025

Can we counter online disinformation? | Unlocked 403 cybersecurity podcast (Season 2, Episode 2)

Ever wondered why a lie can spread faster than the truth? Tune in for an insightful look at disinformation, one of the most pressing challenges facing our digital world.

WeLiveSecurity

10.05.2025

Catching a phish with many faces

Here’s a brief dive into the murky waters of shape-shifting attacks that leverage dedicated phishing kits to auto-generate customized login pages on the fly.

WeLiveSecurity

09.05.2025

Beware of phone scams demanding money for ‘missed jury duty’

When we get the call, it’s our legal responsibility to attend jury service. But sometimes that call won’t come from the courts – it will be a scammer.

WeLiveSecurity

08.05.2025

Toll road text scams are in overdrive: Here’s what to look out for

Have you received a text message about an unpaid road toll? You’re not alone. Make sure you’re not the next victim of a smishing scam.

WeLiveSecurity

04.05.2025

It's a wrap! RSAC 2025 highlights – Week in security with Tony Anscombe

From the power of collaborative defense to identity security and AI, catch up on the event's key themes with ESET Chief Security Evangelist Tony Anscombe.

WeLiveSecurity

02.05.2025

TheWizards APT group uses SLAAC spoofing to perform adversary-in-the-middle attacks

ESET researchers publish an analysis of Spellbinder, a lateral movement tool used to perform adversary-in-the-middle attacks.

WeLiveSecurity

30.04.2025

How safe and secure is your iPhone really?

Your iPhone isn’t necessarily as invulnerable to security threats as you may think. Here are the key dangers to watch out for and how to harden your device against bad actors.

WeLiveSecurity

30.04.2025

This month in security with Tony Anscombe – April 2025 edition

From the near-demise of MITRE's CVE program to a report showing that AI outperforms elite red teamers in spearphishing, April 2025 was another whirlwind month in cybersecurity

WeLiveSecurity

27.04.2025

Ill intent: How deepfake “doctors” peddle bogus cures on TikTok

Look out for AI-generated 'TikDocs' who exploit the public's trust in the medical profession to drive sales of sketchy supplements

WeLiveSecurity

25.04.2025

How fraudsters abuse Google Forms to spread scams

Google Forms, the form and quiz-building tool, is a popular vector for social engineering and malware. Here’s how to stay safe.

WeLiveSecurity

23.04.2025

Will super-smart AI be attacking us anytime soon?

From the time a CVE is released that’s exploitable, or a new technique rolled out, you’ll have to think quick – I hope you’re ready.

WeLiveSecurity

19.04.2025

Look out! CapCut copycats are on the prowl

Cybercriminals lure content creators with promises of cutting-edge AI wizardry, only to steal their data or hijack their devices instead.

WeLiveSecurity

18.04.2025

They’re coming for your data: What are infostealers and how do I stay safe?

Here's what to know about malware that raids email accounts, web browsers, crypto wallets, and more – all in a quest for your sensitive data

WeLiveSecurity

16.04.2025

Attacks on the education sector are surging: How can cyber-defenders respond?

Academic institutions have a unique set of characteristics that makes them attractive to bad actors. What's the right antidote to cyber-risk?

WeLiveSecurity

11.04.2025

Watch out for these traps lurking in search results

Here’s how to avoid being hit by fraudulent websites that scammers can catapult directly to the top of your search results.

WeLiveSecurity

10.04.2025

FamousSparrow resurfaces to spy on targets in the US, Latin America

Once thought to be dormant, the China-aligned group has also been observed using the privately-sold ShadowPad backdoor for the first time.

WeLiveSecurity

10.04.2025

You will always remember this as the day you finally caught FamousSparrow

ESET researchers uncover the toolset used by the FamousSparrow APT group, including two undocumented versions of the group’s signature backdoor, SparrowDoor.

WeLiveSecurity

10.04.2025

When IT meets OT: Cybersecurity for the physical world

Although relatively rare, real-world incidents impacting operational technology highlight that organizations in critical infrastructure can’t afford to dismiss the OT threat

WeLiveSecurity

10.04.2025

The good, the bad and the unknown of AI: Q&A with Mária Bieliková

The computer scientist and AI researcher Mária Bieliková shares her thoughts on the technologys potential and pitfalls – and what may lie ahead for us.

WeLiveSecurity

10.04.2025

Operation FishMedley targeting governments, NGOs, and think tanks

ESET Research is publishing its investigation of Operation FishMedley, a global espionage operation by the China-aligned APT group FishMonger.

WeLiveSecurity

10.04.2025

AI's Biggest Surprises of 2024 | Unlocked 403 cybersecurity podcast (Season 2, Episode 1)

Here's what's been hot on the AI scene over the past 12 months, how it's changing the face of warfare, and how you can fight AI-powered scams

WeLiveSecurity

10.04.2025

This month in security with Tony Anscombe – March 2025 edition

From an exploited vulnerability in a third-party ChatGPT tool to a bizarre twist on ransomware demands, it's a wrap on another month filled with impactful cybersecurity news

WeLiveSecurity

10.04.2025

Don’t let cybercriminals steal your Spotify account

Listen up, this is sure to be music to your ears – a few minutes spent securing your account today can save you a ton of trouble tomorrow

WeLiveSecurity

10.04.2025

Shifting the sands of RansomHub’s EDRKillShifter

ESET researchers discover new ties between affiliates of RansomHub and of rival gangs Medusa, BianLian, and Play.

WeLiveSecurity

10.04.2025

So your friend has been hacked: Are you next?

When a ruse puts on a familiar face, your guard might drop, making you an easy mark. Learn how to tell a friend apart from a foe.

WeLiveSecurity

10.04.2025

Making it stick: How to get the most out of cybersecurity training

Security awareness training doesn’t have to be a snoozefest – games and stories can help instill ‘sticky’ habits that will kick in when actual danger looms.

WeLiveSecurity

10.04.2025

Resilience in the face of ransomware: A key to business survival

When ransomware attempts to hold your critical data hostage, your company’s ability to anticipate the unexpected may become its ultimate competitive advantage.

WeLiveSecurity

10.04.2025

RansomHub affiliates linked to rival RaaS providers

ESET researchers also examine the growing threat posed by tools that ransomware affiliates deploy in an attempt to disrupt EDR security solutions

WeLiveSecurity

10.04.2025

1 billion reasons to protect your identity online

Corporate data breaches are a gateway to identity fraud, but they’re not the only one. Here’s a lowdown on how your personal data could be stolen – and how to make sure it isn’t.

home›WeLiveSecurity›Software

WeLiveSecurity - Software

Don’t let dormant accounts become a doorway for cybercriminals

This month in security with Tony Anscombe – May 2025 edition

Don’t give your personal data to fraudsters: Dodging Docusign scam emails

Danabot under the microscope

Lumma Stealer down for the count

Danabot: Analyzing a fallen empire

ESET takes part in global operation to disrupt Lumma Stealer

ESET APT Activity Report Q4 2024–Q1 2025: Key findings

ESET APT Activity Report Q4 2024–Q1 2025

Operation RoundPress targeting high-value webmail servers

Sednit abuses XSS flaws to hit gov't entities, defense companies

Can we counter online disinformation? | Unlocked 403 cybersecurity podcast (Season 2, Episode 2)

Catching a phish with many faces

Beware of phone scams demanding money for ‘missed jury duty’

Toll road text scams are in overdrive: Here’s what to look out for

It's a wrap! RSAC 2025 highlights – Week in security with Tony Anscombe

TheWizards APT group uses SLAAC spoofing to perform adversary-in-the-middle attacks

How safe and secure is your iPhone really?

This month in security with Tony Anscombe – April 2025 edition

Ill intent: How deepfake “doctors” peddle bogus cures on TikTok

How fraudsters abuse Google Forms to spread scams

Will super-smart AI be attacking us anytime soon?

Look out! CapCut copycats are on the prowl

They’re coming for your data: What are infostealers and how do I stay safe?

Attacks on the education sector are surging: How can cyber-defenders respond?

Watch out for these traps lurking in search results

FamousSparrow resurfaces to spy on targets in the US, Latin America

You will always remember this as the day you finally caught FamousSparrow

When IT meets OT: Cybersecurity for the physical world

The good, the bad and the unknown of AI: Q&A with Mária Bieliková

Operation FishMedley targeting governments, NGOs, and think tanks

AI's Biggest Surprises of 2024 | Unlocked 403 cybersecurity podcast (Season 2, Episode 1)

This month in security with Tony Anscombe – March 2025 edition

Don’t let cybercriminals steal your Spotify account

Shifting the sands of RansomHub’s EDRKillShifter

So your friend has been hacked: Are you next?

Making it stick: How to get the most out of cybersecurity training

Resilience in the face of ransomware: A key to business survival

RansomHub affiliates linked to rival RaaS providers

1 billion reasons to protect your identity online

home
›
WeLiveSecurity
›
Software