Xcitium Logo
Kazuar Botnet Analysis: How Secret Blizzard Built a Stealthy P2P Espionage Platform
Kazuar Botnet Analysis: How Secret Blizzard Built a Stealthy P2P Espionage Platform

Kazuar Is No Longer Just a Backdoor According to recent threat intelligence assessments, the Kazuar...

2026 FIFA World Cup Phishing Scams Are Already Targeting Fans
2026 FIFA World Cup Phishing Scams Are Already Targeting Fans

Researchers found at least 79 typosquatting and lookalike domains across 14 IP addresses. These...

Critical Windows DNS Client Vulnerability (CVE-2026-41096)
Critical Windows DNS Client Vulnerability (CVE-2026-41096)

Critical New DNS Client Vulnerability Microsoft’s May 2026 Patch Tuesday included CVE-2026-41096,...

Fake ‘Mac Cleaner’ Google Ads Spread macOS Malware
Fake ‘Mac Cleaner’ Google Ads Spread macOS Malware

Malicious Ads Lure Mac Users When Mac owners search for terms like “Mac cleaner” or “clear...

Claude AI and Critical Infrastructure: What the Monterrey Water Utility Case Means for AI-Assisted Cyberattacks
Claude AI and Critical Infrastructure: What the Monterrey Water Utility Case Means for AI-Assisted Cyberattacks

Claude-aided attack stands out since it marks a shift from speculative to real-world use of AI in...

BitUnlocker Bypasses BitLocker: A New Windows 11 Downgrade Attack
BitUnlocker Bypasses BitLocker: A New Windows 11 Downgrade Attack

BitLocker Under Siege: What is BitUnlocker? BitUnlocker represents a new attack technique that...

Checkmarx Jenkins AST Plugin Hit by Supply Chain Infostealer Attack
Checkmarx Jenkins AST Plugin Hit by Supply Chain Infostealer Attack

Jenkins remains one of the most popular CI/CD platforms, so its integration with security tools...

TCLBanker Malware: Brazilian Banking Trojan with WhatsApp and Outlook Worms
TCLBanker Malware: Brazilian Banking Trojan with WhatsApp and Outlook Worms

TCLBanker is a new, sophisticated banking Trojan emerging from Brazil that combines aggressive...

MuddyWater Leverages Microsoft Teams for Credential Theft in False-Flag Ransomware Attack
MuddyWater Leverages Microsoft Teams for Credential Theft in False-Flag Ransomware Attack

Microsoft Teams Social Engineering Phishing The Iranian-related APT (MuddyWater/Seedworm) targeted...