Internet Security

Canadian electric utility Nova Scotia Power and parent company Emera suffered a cyberattack

May 1, 2025 add comment
Canadian electric utility Nova Scotia Power and parent company Emera are facing a cyberattack that disrupted their IT systems and networks. Nova Scotia Power Inc. is a vertically integrated... Read more »

Two SonicWall SMA100 flaws actively exploited in the wild

May 1, 2025 add comment
SonicWall confirmed that threat actors actively exploited two vulnerabilities impacting its SMA100 Secure Mobile Access (SMA) appliances. SonicWall revealed that attackers actively exploited two security vulnerabilities, tracked as CVE-2023-44221 and... Read more »

Hive0117 group targets Russian firms with new variant of DarkWatchman malware

May 1, 2025 add comment
Hive0117 targets Russian firms in multiple sectors with phishing attacks using a modified version of the DarkWatchman malware. A cybercrime group named Hive0117 is behind a fresh phishing campaign... Read more »

Russia-linked group Nebulous Mantis targets NATO-related defense organizations

April 30, 2025 add comment
PRODAFT researchers warn of Russia-linked APT group Nebulous Mantis targeting NATO-related defense organizations Nebulous Mantis, a Russian-speaking cyber espionage group (aka Cuba, STORM-0978, Tropical Scorpius, UNC2596), used RomCom RAT... Read more »

France links Russian APT28 to attacks on dozen French entities

April 30, 2025 add comment
France blames Russia-linked APT28 for cyberattacks targeting or compromising a dozen French government bodies and other entities. The Russia-linked APT28 group has targeted or compromised a dozen government organizations... Read more »

Indian Court ordered to block email service Proton Mail

April 30, 2025 add comment
Indian Court ordered a nationwide block of the privacy-oriented email service Proton Mail on April 29, 2025, following a legal complaint. Proton Mail is a Swiss-based email service offering... Read more »

AirBorne flaws can lead to fully hijack Apple devices

April 30, 2025 add comment
Vulnerabilities in Apple’s AirPlay protocol and SDK exposed Apple and third-party devices to attacks, including remote code execution. Oligo Security found serious flaws, collectively tracked as AirBorne, in Apple’s... Read more »

U.S. CISA adds SAP NetWeaver flaw to its Known Exploited Vulnerabilities catalog

April 30, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds SAP NetWeaver flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added SAP NetWeaver flaw, tracked... Read more »

SentinelOne warns of threat actors targeting its systems and high-value clients

April 29, 2025 add comment
SentinelOne warns China-linked APT group PurpleHaze attempted reconnaissance on its systems and high-value clients. Cybersecurity firm SentinelOne warns that a China-linked APT group, tracked as PurpleHaze, attempted to conduct... Read more »

Google Threat Intelligence Group (GTIG) tracked 75 actively exploited zero-day flaws in 2024

April 29, 2025 add comment
Google tracked 75 zero-day flaws exploited in 2024, down from 98 in 2023, according to its Threat Intelligence Group’s latest analysis. In 2024, Google tracked 75 exploited zero-day vulnerabilities,... Read more »
Subscribe to our Newsletter