The Hacker News

Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials

Storm-2561 spreads fake VPN installers via SEO poisoning and GitHub downloads, stealing enterprise VPN credentials with Hyrax malware.
Microsoft

Storm-2561 uses SEO poisoning to distribute fake VPN clients for credential theft

Storm-2561 uses SEO poisoning to push fake VPN downloads that install signed trojans and steal VPN credentials. Active since 2025, Storm-2561 mimics trusted brands and abuses legitimate services. This ...

APT28 hackers deploy customized variant of Covenant open-source tool

The Russian state-sponsored APT28 threat group is using a custom variant of the open-source Covenant post-exploitation framework for long-term espionage operations.

Understanding and Defending Against Iranian Cyber Threats: An ISA/IEC 62443 Perspective

During the unprecedented escalation of the current 2026 cyber and kinetic war involving Iran, Israel and the United States, understanding the adversary's playbook is more critical than ever.
CNET

Best Free VPN for 2026: Privacy Without Paying

Attila covers software, apps and services, with a focus on virtual private networks. He's an advocate for digital privacy and has been quoted in online publications like Computer Weekly, The Guardian, ...