The DriveSurge threat actor operates as an initial access broker, utilizing a pay-per-install model to facilitate subsequent attacks, according to research by SilentPush.
Tag: initial
AI, Apps, Funding, Global Security News, Network Security
Anthropic Moves Toward IPO as OpenAI Competition Heats Up
Anthropic has confidentially filed paperwork with the U.S. Securities and Exchange Commission (SEC) for an initial public offering (IPO), becoming the latest artificial intelligence giant to move toward the public markets and potentially beating rival OpenAI to a public debut. The Claude developer submitted a draft registration statement to the SEC on June 1, a…
AI, Funding, Global Security News
What an OpenAI IPO Might Mean for the Channel
OpenAI is reportedly preparing for an initial public offering (IPO), a move that could significantly impact both the consumer AI market and the channel ecosystem as we know it. As the company behind arguably the world’s most recognizable AI platform, OpenAI’s transition into a publicly traded company could unlock new opportunities, partnerships, and revenue streams…
Global Security News
The Secrets Revealed in SpaceX’s IPO Filing
Documents related to SpaceX’s initial public offering show the company is unprofitable and CEO Elon Musk controls 85% of the vote.
AI, Data Breaches, Exploits, Global Security News, Network Security
Verizon DBIR: Vulnerability exploitation is the dominant initial access vector
Vulnerability exploitation has overtaken stolen credentials as the most common way attackers gain initial access to target networks, according to the 2026 Verizon Data Breach Investigations Report. This is the first time credential theft has been knocked off the top spot in the report’s 19-year history, the company noted. Known initial access vectors over time…
AI, Global Security News, Network Security
KongTuke hackers now use Microsoft Teams for corporate breaches
Initial access broker KongTuke has moved to Microsoft Teams for social engineering attacks, taking as little as five minutes to gain persistent access to corporate networks. […]
AI, Exploits, Global Security News
Attackers Combine ClickFix With PySoxy Proxying to Maintain Persistence
Exploitation of open-source tools allows attackers to maintain persistent access after initial social engineering, warn ReliaQuest researchers
Global Security News
Webinar: Why modern attacks require both security and recovery
Modern attacks don’t stop at initial compromise. This webinar explores why security and recovery must work together to reduce downtime and improve resilience. […]
AI, Global Security News
North Korea’s Lazarus Targets macOS Users via ClickFix
Lazarus continues leveraging ClickFix for initial access and data theft, in this case, against Mac-centric organizations and their high-value leaders.
AI, Compliance, Global Security News
Strategic convergence in the Australian professional landscape
The modern Australian workplace is currently undergoing a period of profound transition where the initial rush toward total digitisation is being replaced by a more nuanced and sustainable hybrid operational model. Success in this environment is no longer defined by the abandonment of traditional systems but by the seamless integration of advanced digital tools with…
Exploits, Global Security News
Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials
A large-scale credential harvesting operation has been observed exploiting the React2Shell vulnerability as an initial infection vector to steal database credentials, SSH private keys, Amazon Web Services (AWS) secrets, shell command history, Stripe API keys, and GitHub tokens at scale. Cisco Talos has attributed the operation to a threat cluster it tracks as
Global Security News, malware
LeakNet ransomware uses ClickFix and Deno runtime for stealthy attacks
The LeakNet ransomware gang is now using the ClickFix technique for initial access into corporate environments and deploys a malware loader based on the open-source Deno runtime for JavaScript and TypeScript. […]
AI, Exploits, Global Security News
Google: Cloud attacks exploit flaws more than weak credentials
Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days. […]
Global Security News
Latin America’s Cyber Maturity Lags Threat Landscape
The slower pace of upgrades has the unintended impact of creating a haven for attackers, especially for initial access brokers and ransomware gangs.
AI, Apps, Cybersecurity, Endpoint, Exploits, Global Security News, Network Security
Cyber attacks enabled by basic failings, Palo Alto analysis finds
Cyberattacks are moving faster, shrinking the gap between initial compromise and bad consequences, and the advent of AI is accelerating their timelines in a way that human defenders can no longer keep up with. That’s the broad and perhaps unsurprising finding of Palo Alto Networks’ 2026 Global Incident Response Report, which analyzed 750 incidents in…