Russia-aligned threat groups dupe Ukrainian targets via Signal
Google researchers say multiple Russian state threat groups have conducted remote phishing operations to target and compromise Signal accounts.
Advertisement
Uncategorized
Russian state threat group shifts focus to US, UK targets
A subgroup of Seashell Blizzard exploited public vulnerabilities in internet-facing systems, Microsoft researchers said.
Hugging Face platform continues to be plagued by vulnerable ‘pickles’
A widely used python module for machine-learning developers can be loaded with malware and bypass detection measures.
Wiz researchers find sensitive DeepSeek data exposed to internet
Experts for the cloud security firm pulled sensitive data from the service with simple SQL queries.
SonicWall pushes urgent patch for its SMA appliance
The flaw has a severity rating of 9.8 out of 10, and a patch has been made available.
Thousands of industrial routers vulnerable to command injection flaw
The vulnerability, found in versions of Four-Faith routers, appears to have been exploited in the wild and has been connected to attempted infections of Mirai.
Advertisement
Justice Department unveils charges against alleged LockBit developer
The U.S. Department of Justice revealed charges Friday against Rostislav Panev, a dual Russian and Israeli national, for his alleged role as a developer in the notorious…
Exclusive: Feds are probing 764, The Com’s use of cybercriminal tactics to carry out violent crimes
Documents reviewed by CyberScoop show that law enforcement is tracking these violent criminal groups’ use of malicious cyber tools to cause harm to children.
How a Russian man’s harrowing tale shows the physical dangers of spyware
Citizen Lab and a Russian exile-led human rights group investigated spyware implanted on his phone after he was detained, beaten up and released.
Microsoft launches ‘Zero Day Quest’ competition to enhance cloud and AI security
The tech giant is upping the bounties attached to several popular systems.