A breach claims the systems as well as the confidence that was, in retrospect, a major vulnerability

   ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian governmental institutions

   ESET researchers discover another iteration of NGate malware, this time possibly developed with the assistance of AI

   An attack is what you see, but a business operation is what you’re up against

   Ignoring a real breach notification invites risk, but falling for a bogus one could be even worse. Stop reacting on autopilot.

   Your biggest risk may be a vendor you trust. How can SMBs map their third-party blind spots and build operational resilience?

   If you’ve been a victim of fraud, you’re likely already a lead on a sucker list’ - and if you’re not careful, your ordeal may be about to get worse.

   Threat actors are using AI to supercharge tried-and-tested TTPs. When attacks move this fast, cyber-defenders need to rethink their own strategy.

   Fraudsters often target the accounts of the deceased or their grieving relatives. Here’s how to keep the scammers at bay.

   The past four weeks have seen a slew of new cybersecurity wake-up calls that showed why every organization needs a well-thought-out cyber-resilience...

   This year, AI agents took the center stage - as a defensive capability, but more pressingly as a risk many organizations haven’t caught up with

   Silver Fox is back in Japan, spoofing tax and HR emails timed to the one season when no one thinks twice about opening them

   Cloud VMs offer unmatched speed, scale and flexibility - all of which could eventually count for little if they’re left to fend for themselves

   As IT infrastructure expands, visibility and control often lag behind - until an incident forces a reckoning

   What you do - and how fast - after an account is compromised often matters more than it may seem

   ESET researchers dive deeper into the EDR killer ecosystem, disclosing how attackers abuse vulnerable drivers

   ESET’s Jake Moore used smart glasses, deepfakes and face swaps to hack’ widely-used facial recognition systems - and he’ll demo it all at RSAC 2026

   The cybersecurity implications of the war in the Middle East extend far beyond the region. Here’s where to focus your defenses.

   The resurgence of one of Russia’s most notorious APT groups

   The ability to continue operating safely in an unsafe environment where competitors cannot is a competitive advantage that is rarely measured or...

   We speak to Director of ESET Threat Research Jean-Ian Boutin about where solutions that blend advanced technology with human expertise provide the...

   The education sector is notoriously short on cash, but rich in assets for threat actors to target. How can managed detection and response (MDR) help...

   In this roundup, Tony looks at how opportunistic threat actors are taking advantage of weak authentication, unmanaged exposure, and popular AI tools

   Start using a new app and you’ll often be asked to grant it permissions. But blindly accepting them could expose you to serious privacy and security...

   Can you believe your ears? Increasingly, the answer is no. Here’s what’s at stake for your business, and how to beat the deepfakers.

   ESET researchers discover PromptSpy, the first known Android malware to abuse generative AI in its execution flow

   Like any other marketplace, the social commerce platform has its share of red flags. It pays to know what to look for so you can shop or sell without...

   When it comes to our children’s digital lives, prohibition rarely works. It’s our responsibility to help them build a healthy relationship with tech.

   When corporate data is exposed on a dedicated leak site, the consequences linger long after the attack fades from the news cycle

   It’s time to file your tax return. And cybercriminals are lurking to make an already stressful period even more edgy.

   The mobile marketplace app has a growing number of users, but not all of them are genuine. Watch out for these common scams.

   It’s snow joke - sporting events are a big draw for cybercriminals. Make sure you’re not on the losing side by following these best practices.

   The trends from January offer useful clues about the risks and priorities that security teams are likely to contend with throughout the year

   ESET researchers present technical details on a recent data destruction incident affecting a company in Poland’s energy sector

   ESET researchers discover an Android spyware campaign targeting users in Pakistan via romance scam tactics, revealing links to a broader spy operation

   Has your inbox recently been deluged with unwanted and even outright malicious messages? Here are 10 possible reasons - and how to stem the tide.

   The attack involved data-wiping malware that ESET researchers have now analyzed and named DynoWiper

   As children turn to AI chatbots for answers, advice, and companionship, questions emerge about their safety, privacy, and emotional development

   Here’s how the most common scams targeting Apple Pay users work and what you can do to stay one step ahead

   Once again, data shows an uncomfortable truth: the habit of choosing eminently hackable passwords is alive and well

   The business social networking site is a vast, publicly accessible database of corporate information. Don’t believe everyone on the site is who they...

   Should verified identities become the standard online? Australia’s social media ban for under-16s shows why the question matters.

   If your data is on the dark web, it’s probably only a matter of time before it’s abused for fraud or account hijacking. Here’s what to do.

   Reusing passwords may feel like a harmless shortcut - until a single breach opens the door to multiple accounts

   As 2025 draws to a close, Tony looks back at the cybersecurity stories that stood out both in December and across the whole of this year

   Have you ever received a package you never ordered? It could be a warning sign that your data has been compromised, with more fraud to follow.

   A comprehensive analysis and assessment of a critical severity vulnerability with low likelihood of mass exploitation

   ESET researchers discovered a China-aligned APT group, LongNosedGoblin, which uses Group Policy to deploy cyberespionage tools across networks of...

   A view of the H2 2025 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts

   Behind the polished exterior of many modern buildings sit outdated systems with vulnerabilities waiting to be found