Cyber News 16

DPRK’s APT37 Targets Cambodia With Khmer, ‘VeilShell’ Backdoor

It’s North Korea versus Cambodia, with Windows default settings and sheer patience allowing the bad guys to avoid easy detection.…

Cyber Insight

Thousands of DrayTek Routers at Risk From 14 Vulnerabilities

Several of the flaws enable remote code execution and denial-of-service attacks while others enable data theft, session hijacking, and other…

Cyber Insight

Ukraine-Russia Cyber Battles Tip Over Into the Real World

“Pig butchering,” generative AI, and spear-phishing have all transformed digital warfare. “Pig butchering,” generative AI, and spear-phishing have all transformed…

Cyber Insight

CISA Adds High-Severity Ivanti Vulnerability to KEV Catalog

Ivanti reports that the bug is being actively exploited in the wild for select customers. Ivanti reports that the bug…

Cyber Insight

Android 14 Adds New Security Features to Block 2G Exploits and Baseband Attacks

Google has revealed the various security guardrails that have been incorporated into its latest Pixel devices to counter the rising…

Cyber Insight

The Future of AI Safety: California’s Vetoed Bill & What Comes Next

Although the veto was a setback, it highlights key debates in the emerging field of AI governance and the potential…

Cyber Insight

The Secret Weakness Execs Are Overlooking: Non-Human Identities

For years, securing a company’s systems was synonymous with securing its “perimeter.” There was what was safe “inside” and the…

Cyber Insight

New Perfctl Malware Targets Linux Servers for Cryptocurrency Mining and Proxyjacking

Linux servers are the target of an ongoing campaign that delivers a stealthy malware dubbed perfctl with the primary aim…

Cyber Insights

Breaking

Microsoft Warns of Chinese Botnet Exploiting Router Flaws for Credential Theft

Massive Git Config Breach Exposes 15,000 Credentials; 10,000 Private Repos Cloned

New FakeCall Malware Variant Hijacks Android Devices for Fraudulent Banking Calls

Enterprise Identity Threat Report 2024: Unveiling Hidden Threats to Corporate Identities

LiteSpeed Cache Plugin Vulnerability Poses Significant Risk to WordPress Websites

Microsoft Warns of Chinese Botnet Exploiting Router Flaws for Credential Theft

Massive Git Config Breach Exposes 15,000 Credentials; 10,000 Private Repos Cloned

New FakeCall Malware Variant Hijacks Android Devices for Fraudulent Banking Calls

Enterprise Identity Threat Report 2024: Unveiling Hidden Threats to Corporate Identities

Be Mindful of Social Media Privacy

Twitter CEO’s account hacked via SIM-card swap attack

No one is immune to phishing attack

Password – the Gate of Hell of the Digital Age

Microsoft Warns of Chinese Botnet Exploiting Router Flaws for Credential Theft

Massive Git Config Breach Exposes 15,000 Credentials; 10,000 Private Repos Cloned

New FakeCall Malware Variant Hijacks Android Devices for Fraudulent Banking Calls

Enterprise Identity Threat Report 2024: Unveiling Hidden Threats to Corporate Identities

DPRK’s APT37 Targets Cambodia With Khmer, ‘VeilShell’ Backdoor

Thousands of DrayTek Routers at Risk From 14 Vulnerabilities

Ukraine-Russia Cyber Battles Tip Over Into the Real World

CISA Adds High-Severity Ivanti Vulnerability to KEV Catalog

Android 14 Adds New Security Features to Block 2G Exploits and Baseband Attacks

The Future of AI Safety: California’s Vetoed Bill & What Comes Next

The Secret Weakness Execs Are Overlooking: Non-Human Identities

New Perfctl Malware Targets Linux Servers for Cryptocurrency Mining and Proxyjacking

You Missed

Microsoft Warns of Chinese Botnet Exploiting Router Flaws for Credential Theft

Massive Git Config Breach Exposes 15,000 Credentials; 10,000 Private Repos Cloned

New FakeCall Malware Variant Hijacks Android Devices for Fraudulent Banking Calls

Enterprise Identity Threat Report 2024: Unveiling Hidden Threats to Corporate Identities