Ransomware group Mora_001 targets Fortinet applications
The new gang appears to have links to the defunct LockBit group.
2 minutes
News
Introducing ThreatDown OneView free self-serve trial for MSPs
We’re giving MSPs a 15-day, no-obligation trial to explore the OneView Platform on their own terms.
2 minutes
Ransomware in February 2025—Cl0p and RansomHub run riot
The Cl0p ransomware group posted data on 335 victims in February 2025, by far the largest one month total any…
2 minutes
ThreatDown is Product of The Year
ThreatDown Endpoint Protection is the first and only winner of the MRG Effitas Product of the Year award, after 13…
1 minute
March 2025 Patch Tuesday, severity over quantity
The March 2025 Patch Tuesday update contains an unusually large number of zero-day vulnerabilities that are being actively exploited.
3 minutes
Infighting brings down the Black Basta ransomware group
It seems that internal struggles lead to the break-down of one of the last ransomware-as-a-service giants.
2 minutes
Four zero-days in February’s Patch Tuesday
February 2025's Patch Tuesday seems relatively relaxed, but there’s a catch for organizations using NTLM.
2 minutes
Ransomware in January 2024—bad news for US healthcare
January 2025 saw some high profile attacks and no shortage of bad news for the US healthcare sector.
0 minutes
Ransomware in December 2024—Cl0p returns
December 2024 saw the unwelcome return of the notorious Cl0p ransomware gang.
1 minute
December patch Tuesday fixes one actively exploited zero-day vulnerability
Microsoft patched an actively exploited vulnerability in the CLFS component.
1 minute
Update now! November Patch Tuesday tackles 4 zero-days, two actively exploited
Microsoft’s November Patch Tuesday includes fixes for 89 vulnerabilities in total.
3 minutes
Exchange Server 2016 and 2019 have less than a year to live
On October 14, 2025, Exchange Server 2016 and Exchange Server 2019 reach end of support.
2 minutes
How threat actors use AI
OpenAI has published an update on some of the criminal campaigns it has identified and disrupted.
2 minutes
Patch now! Palo Alto Expedition vulnerabilities could leak firewall credentials
A set of vulnerabilities in Palo Alto Networks Expedition could allow an attacker to read database contents and arbitrary files
2 minutes
Update now! Five zero-days fixed October Patch Tuesday
Microsoft’s October Patch Tuesday covers five zero-days, two of which are being actively exploited.
2 minutes
Ransomware insurance is funding cybercrime, says White House official
"This is a troubling practice that must end."
2 minutes
Zimbra SMTP vulnerability is being exploited in numbers
The flaw can be exploited by sending an email with a specially crafted CC field.
1 minute
Hybrid cloud environments are not safe from ransomware
A ransomware affiliate has been found compromising hybrid cloud environments.
3 minutes
Android’s Rusty new code shakes off huge number of memory-safe vulnerabilities
Google has dramatically reduced the number of serious memory safety vulnerabilities in Android by shifting to memory-safe languages.
2 minutes
