Internet Security

Russia-linked APT Seashell Blizzard is behind the long running global access operation BadPilot campaign

February 13, 2025 add comment
A subgroup of the Russia-linked Seashell Blizzard APT group (aka Sandworm) ran a global multi-year initial access operation called BadPilot. Microsoft shared findings on research on a subgroup of... Read more »

Sarcoma ransomware gang claims the theft of sensitive data from PCB maker Unimicron

February 13, 2025 add comment
The Sarcoma ransomware group announced a breach of the Taiwanese printed circuit board (PCB) manufacturing giant Unimicron. The Sarcoma ransomware group claims to have breached Taiwanese PCB manufacturer Unimicron,... Read more »

Russian cybercriminal Alexander Vinnik is being released from U.S. custody in exchange for Marc Fogel

February 12, 2025 add comment
Russian cybercriminal Alexander Vinnik is being released from U.S. custody in exchange for Marc Fogel, a Trump administration source told CNN. The New York Times first reported that Alexander... Read more »

North Korea-linked APT Emerald Sleet is using a new tactic

February 12, 2025 add comment
Microsoft Threat Intelligence has observed North Korea-linked APT Emerald Sleet using a new tactic, tricking targets into running PowerShell. Microsoft Threat Intelligence researchers spotted North Korea-linked threat actor Emerald... Read more »

U.S. CISA adds Microsoft Windows, Zyxel device flaws to its Known Exploited Vulnerabilities catalog

February 12, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Windows, Zyxel device flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following vulnerabilities to... Read more »

Microsoft Patch Tuesday security updates for February 2025 ficed 2 actively exploited bugs

February 12, 2025 add comment
Microsoft Patch Tuesday security updates for February 2025 addressed four zero-day flaws, two of which are actively exploited in the wild. Microsoft Patch Tuesday security updates for February 2025... Read more »

Attackers exploit a new zero-day to hijack Fortinet firewalls

February 11, 2025 add comment
Fortinet warned of attacks using a now-patched zero-day vulnerability in FortiOS and FortiProxy to hijack Fortinet firewalls. Fortinet warned that threat actors are exploiting a new zero-day vulnerability, tracked... Read more »

OpenSSL patched high-severity flaw CVE-2024-12797

February 11, 2025 add comment
OpenSSL patched the vulnerability CVE-2024-12797, a high-severity flaw found by Apple that enables man-in-the-middle attacks. The OpenSSL Project addressed a high-severity vulnerability, tracked as CVE-2024-12797, in its secure communications... Read more »

Progress Software fixed multiple high-severity LoadMaster flaws

February 11, 2025 add comment
Progress Software fixed multiple vulnerabilities in its LoadMaster software, which could be exploited to execute arbitrary system commands. Progress Software has addressed multiple high-severity security vulnerabilities (CVE-2024-56131, CVE-2024-56132, CVE-2024-56133, CVE-2024-56134, CVE-2024-56135)... Read more »

Artificial intelligence (AI) as an Enabler for Enhanced Data Security

February 11, 2025 add comment
Artificial intelligence enhances data security by identifying risks and protecting sensitive cloud data, helping organizations stay ahead of evolving threats. Artificial intelligence (AI) is transforming industries and redefining how... Read more »
Subscribe to our Newsletter