Network SecurityFBI warns of email spoofing by North Korean threat actor KimsukyThe state-sponsored group is exploiting weak DMARC policies to impersonate legitimate domains.
Network SecurityChina’s attacks on critical infrastructure ‘tip of the iceberg’CISA Director Jen Easterly told lawmakers that Chinese cyberespionage threats warrants budget boost.
Network SecurityChange Healthcare incident caused by compromised Citrix credentialsUnitedHealth Group’s CEO Andrew Witty set to testify before Congress tomorrow – security pros say there’s more to the story and it will take several more months of investigation before we know the full kill chain.
AI/MLCybersecurity firm Darktrace sold to Thoma Bravo for $5.3 billionThe acquisition comes a day after another cybersecurity firm, Rukrik, went public.
Network SecuritySmoke and (screen) mirrors: A strange signed backdoorSophos X-Ops discovers a curious backdoored (and signed) executable, masquerading as something else entirely.
Network SecurityCisco firewalls targeted in sophisticated nation-state espionage hackSecurity agencies sound alarm over campaign aimed at Cisco’s Adaptive Security Appliance software.
Network SecurityCoralRaider leverages CDN cache domains in new infostealer campaignA new CryptBot variant targets password managers and authentication apps in the new campaign.
Cloud SecurityAttackers evade detection by leveraging Microsoft Graph APIMicrosoft Graph API has become popular with hackers because running criminal ops on widely used cloud services raises less suspicion.
Network SecurityElusive group ToddyCat refines techniques for large-scale data theftThe stealthy threat group is particularly focused on exfiltrating data from Asia-Pacific government and defense organizations.