Social media influencers can provide reach and trust for scams and malware distribution. Robust account protection is key to stopping the fraudsters. 25 Nov 2025 • , 4 min. read It’s not an easy time to be an influencer. Brands… Read More "How cybercriminals are targeting content creators"
Threat actors have targeted an open source maintainer to hijack one of the most popular npm packages and spread remote access Trojans (RATs). Axios is a JavaScript library downloaded over 100 million times a week and used as a dependency in… Read More "Hackers Hijack Axios npm Package to Spread RATs"
Whether your organization is prepared or not, the risks associated with third-party partnerships will continue to increase. In 2022, approximately 1,802 data breaches exposed the information of more than 422 million individuals in the United States alone. While those numbers… Read More "7 Third-Party Risk Management Trends to be Aware of in 2026"
ESET researchers have identified new MuddyWater activity primarily targeting organizations in Israel, with one confirmed target in Egypt. MuddyWater, also referred to as Mango Sandstorm or TA450, is an Iran-aligned cyberespionage group known for its persistent targeting of government and… Read More "MuddyWater: Snakes by the riverbank"
The impact of cyber-attacks on UK manufacturers extended well beyond Jaguar Land Rover (JLR) last year, with 78% of businesses suffering a serious incident, according to new data from ESET. The security vendor polled 500 senior decision-makers responsible for IT, OT,… Read More "Eight in 10 UK Manufacturers Hit by Cyber Incident in a Year"
An efficient Vendor Risk Management (VRM) workflow compresses the timeline between risk discovery and remediation, significantly reducing your chances of being impacted by a third-party breach. If you’re currently struggling to manage your vendor security risks, in this post we… Read More "2026 Vendor Risk Management Workflow (6-Stage Guide)"
Interpreting the vast cybersecurity vendor landscape through the lens of industry analysts and testing authorities can immensely enhance your cyber-resilience. 10 Dec 2025 • , 7 min. read Skip to the next paragraph if your eyes glaze over at the… Read More "How to harness today’s diverse analyst and tester landscape to paint a security masterpiece"
After a quiet period since 2023, Chinese state-backed group TA416 has reemerged with a vengeance, launching a fresh wave of cyber espionage campaigns against European governments. Proofpoint researchers detected the group’s renewed activity in mid-2025, with multiple malware delivery campaigns… Read More "Chinese Hackers Target European Governments in Espionage Campaigns"
With violation penalties of up to $100,000 per month until full compliance is achieved, every entity processing cardholder data can’t afford to miss a PCI DSS compliance gap. But with the expanding digital landscape increasing the complexity of information security,… Read More "Choosing a PCI DSS 4.0 Compliance Product in 2026"
In 2024, ESET researchers noticed previously undocumented malware in the network of a Southeast Asian governmental entity. This led us to uncover even more new malware on the same system, none of which had substantial ties to any previously tracked… Read More "LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan"
