VirusTotal is a tool tracked across 12 threat clusters and 12 intelligence report mentions on ThreatCluster. First observed November 5, 2025; most recent activity July 3, 2026.
VirusTotal is a widely used online platform that aggregates results from multiple antivirus engines and analyzes files, URLs, and other artifacts for malware. It supports threat intelligence and incident response by enabling researchers and defenders to validate samples, share indicators, and streamline detection workflows. Its significance in cybersecurity stems from broad engine coverage, integration options, and its role in corroborating malware findings across investigations.
A critical vulnerability in the nginx-ui web server management tool, tracked as CVE-2026-33032, has been actively exploited since March 2026. This flaw allows attackers to bypass authentication on the /mcp_message…
A clipboard hijacker malware campaign has emerged, targeting cryptocurrency traders and online gamblers. The operation employs fake software tools, including sniper bots and game predictors, to lure victims. It utilizes…
A recent analysis revealed that Google Safe Browsing missed 84% of phishing sites identified in February 2026. This significant oversight highlights vulnerabilities in existing detection tools, affecting users and…
UK small and medium-sized enterprises (SMEs) are increasingly vulnerable to sophisticated AI-driven scams, as highlighted by recent reports. The emergence of 'AI scams 2.0' combines traditional social engineering…
Nation-state actors and cybercrime groups are utilizing Gemini AI to create a 'Thinking Robot' malware module capable of rewriting its own code to evade detection. This development also includes an AI agent designed to…
In 2022, digital forensics expert Robert Jan Mora identified unusual malware evidence while reviewing Pune Police reports related to the Bhima Koregaon case. This case involves the ongoing persecution of 16 human rights…
Cisco Talos reports on the UAT-8099 campaign that has been targeting vulnerable IIS web servers across Asia since August 2025. Key affected regions include India, Pakistan, Thailand, Vietnam, and Japan, with a notable…
Enkrypt AI has launched Skill Sentinel, an open-source security scanner aimed at detecting malicious code and hidden threats in AI coding assistant Skills. The tool is designed to protect teams from risks such as…
CyberSentinel AI has released version 3.0 of its open-source cybersecurity platform, integrating 33 penetration testing and threat intelligence tools. The platform features a provider-agnostic AI engine that supports…
On June 16, 2026, WifiTalents published a buyer's guide comparing various Dox Software tools for threat intelligence, including Recorded Future and ThreatConnect. The guide evaluates features, ease of use, and value,…