π΅οΈββοΈ China-Nexus APT 'Weaver Ant' Caught in Yearslong Web Shell Attack π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The persistent threat actor was caught using sophisticated Web shell techniques against an unnamed telecommunications company in Asia.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
China-Nexus APT Caught in Yearslong Web Shell Attack
A China-nexus persistent threat actor known as "Weaver Ant" was caught using sophisticated Web shell techniques against an unnamed telecommunications company in Asia.
π΅οΈββοΈ US Weakens Disinformation Defenses, as Russia & China Ramp Up π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Russia and China spend billions of dollars on state media, propaganda, and disinformation, while the Trump administration has slashed funding for US agencies.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
US Cuts Disinformation Defenses As Russia, China Ramp Up
Russia and China spend billions of dollars on state media, propaganda, and disinformation, while the Trump administration has slashed funding for US agencies.
π΅οΈββοΈ FCC Investigates China-Backed Tech Suppliers for Evading US Operations Ban π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
FCC chair warns these companies may still be operating in the US because they don't believe that being added to its "Covered List" poses any serious risk.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
FCC Investigates CCP Orgs for Evading US Operations Ban
The FCC chair's office told the public that it believes these companies may still be operating in the US because they don't believe that being added to its "Covered List" poses any serious risk.
π΅οΈββοΈ Oracle Denies Claim of Oracle Cloud Breach of 6M Records π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
A threat actor posted data on BreachForums from an alleged supply chain attack that affected more than 140K tenants, claiming to have compromised the cloud via a zeroday flaw in WebLogic, researchers say.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
ποΈ Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A set of five critical security shortcomings have been disclosed in the Ingress NGINX Controller for Kubernetes that could result in unauthenticated remote code execution, putting over 6,500 clusters at immediate risk by exposing the component to the public internet. The vulnerabilities CVE202524513, CVE202524514, CVE20251097, CVE20251098, and CVE20251974 , assigned a CVSS score of.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Microsoft Adds Inline Data Protection to Edge for Business to Block GenAI Data Leaks ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Microsoft on Monday announced a new feature called inline data protection for its enterprisefocused Edge for Business web browser. The native data security control is designed to prevent employees from sharing sensitive companyrelated data into consumer generative artificial intelligence GenAI apps like OpenAI ChatGPT, Google Gemini, and DeepSeek. The list will be expanded over time to.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π1
ποΈ VanHelsing RaaS Launch: 3 Victims, $5K Entry Fee, Multi-OS, and Double Extortion Tactics ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A ransomwareasaservice RaaS operation called VanHelsing has already claimed three victims since it launched on March 7, 2025, demanding ransoms as high as 500,000. "The RaaS model allows a wide range of participants, from experienced hackers to newcomers, to get involved with a 5,000 deposit. Affiliates keep 80 of the ransom payments, while the core operators earn 20," Check Point said.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π VanHelsingRaaS Expands Rapidly in Cybercrime Market π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
VanHelsingRaaS, a new ransomwareasaservice program, infected three victims within two weeks of release, demanding ransoms of 500,000.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
VanHelsingRaaS Expands Rapidly in Cybercrime Market
VanHelsingRaaS, a new ransomware-as-a-service program, infected three victims within two weeks of release, demanding ransoms of $500,000
π Ukraine Railway Systems Hit by Targeted Cyber-Attack π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Ukraines national railway company has suffered a largescale cyberattack, disrupting online services and operations.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Ukraine Railway Systems Hit by Targeted Cyber-Attack
Ukraineβs national railway company has suffered a βlarge-scaleβ cyber-attack, disrupting online services and operations
π Authorities Seize 1842 Devices in Africaβs Cybercrime Crackdown π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Authorities in seven African countries have arrested 306 suspects and seized 1842 devices in Operation Red Card.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Authorities Seize 1842 Devices in Africaβs Cybercrime Crackdown
Authorities in seven African countries have arrested 306 suspects and seized 1842 devices in Operation Red Card
π1
ποΈ INTERPOL Arrests 306 Suspects, Seizes 1,842 Devices in Cross-Border Cybercrime Bust ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Law enforcement authorities in seven African countries have arrested 306 suspects and confiscated 1,842 devices as part of an international operation codenamed Red Card that took place between November 2024 and February 2025. The coordinated effort "aims to disrupt and dismantle crossborder criminal networks which cause significant harm to individuals and businesses," INTERPOL said, adding it.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π1
π¦
Cyble Sensors Detect Exploit Attempts on Ivanti, AVTECH IP Cameras π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble Cyble Sensors Detect Exploit Attempts on Ivanti, AVTECH IP Cameras. " dataimagecaption"Cyble Cyble Sensors Detect Exploit Attempts on Ivanti, AVTECH IP Cameras " datamediumfile"httpscyble.comwpcontentuploads202503CybleBlogsIvanti300x150.png" datalargefile"httpscyble.comwpcontentuploads202503CybleBlogsIvanti1024x512.png" title"Cyble Sensors Detect Exploit Attempts on Ivanti, AVTECH IP Cameras 1" Overview Vulnerabilities in Ivanti products, AVTECH IP cameras, and WordPress plugins have recently been among the dozens of attempted exploits detected by Cyble honeypot sensors. The attack attempts were detailed in the threat intelligence companys weekly sensor intelligence reports to clients. The Cyble reports have also examined persistent attacks against Linux systems and net...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Cyble Detects Exploit Attempts On Ivanti & AVTECH Cams
Ivanti and AVTECH products and WordPress plugins have been among dozens of attack targets detected by Cyble honeypots.
π’ Millions of 23andMe usersβ genetic data could be up for grabs β and experts worry itβs a looming privacy nightmare π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
DNA testing company 23andMe has filed for bankruptcy protection, raising questions about the future of the company and the personal data it holds.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
Millions of 23andMe usersβ genetic data could be up for grabs β and experts worry itβs a looming privacy nightmare
The company holds the genetic data of around 15 million people, and security experts have raised serious concerns
π1
π’ Fake file converter tools are on the rise β hereβs what you need to know π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The FBI has issued an alert over the rise of fake file converter tools available online after observing a spate of scams and ransomware attacks.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
Fake file converter tools are on the rise β hereβs what you need to know
Criminals are offering tools for free that do more than they claim, leading to malware or identity theft
π’ Oracle breach claims spark war of words with security researchers π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
A war of words has erupted between Oracle and cybersecurity researchers following claims the company suffered a security breach.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
Oracle breach claims spark war of words with security researchers
The tech giant denied claims it had been breached β researchers have hit back
π΅οΈββοΈ OPSEC Nightmare: Leaking US Military Plans to a Reporter π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Experts say the leakage of US military plans to a reporter this month reflects a severe operational security failure on the part of US leadership.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
OPSEC Nightmare: Leaking US Military Plans to a Reporter
Experts say the leakage of US military plans to a reporter this month reflects a severe operational security failure on the part of US leadership.
π΅οΈββοΈ South African Poultry Company Reports $1M Loss After Cyber Intrusion π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The company reports that no sensitive information was breached or stolen in the cyber intrusion and that its operations are running normally again.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Poultry Company Reports $1M Loss After Cyberattack
The company reports that no sensitive information was breached or stolen in the cyber intrusion and that its operations are running normally again.
π΅οΈββοΈ Accused Snowflake Attacker 'Judische' Agrees to US Extradition π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Though there is no confirmation as to when this extradition will occur, Alexander Moucka agreed to be transferred in writing before a judge.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Accused Snowflake Attacker 'Judische' Agrees to US Extradition
Though there is no confirmation as to when this extradition will occur, Moucka agreed to be transferred in writing before a judge.
π΅οΈββοΈ 5 Considerations for a Data Loss Prevention Rollout π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Strong DLP can be a gamechanger but it can also become a slowmoving, overcomplicated mess if not executed properly.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
5 Considerations for a Data Loss Prevention Rollout
Strong DLP can be a game-changer β but it can also become a slow-moving, overcomplicated mess if not executed properly.
π΅οΈββοΈ Meet the Low-Key Access Broker Supercharging Russian State Cybercrime π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Raspberry Robin breaks into organizations and sells access to Russian threat actors, including the military cyber unit behind attempted coups, assassinations, and influence operations throughout Europe.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Meet the Access Broker Supercharging Russian Cybercrime
Raspberry Robin breaks into organizations and sells access to Russian threat actors, including the military cyber unit behind attempted coups, assassinations, and influence operations throughout Europe.
π΅οΈββοΈ 23andMe Bankruptcy Filing May Put Sensitive Data at Risk π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Security experts worry the company's Chapter 11 status and aim to sell its assets could allow threat actors to exploit and misuse the genetic information it collected.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
23andMe Bankruptcy Filing May Put Sensitive Data at Risk
The company's Chapter 11 status and plans to sell its assets could allow threat actors to exploit and misuse the genetic information it collected.