Hacker's King

DECEMBER 24, 2024

As the digital landscape evolves, cybersecurity remains a critical concern for businesses, governments, and individuals alike. Growth of IoT Security Solutions With billions of Internet of Things (IoT) devices connecting to networks worldwide, IoT security will be a top priority.

Cybersecurity

Security Affairs

JULY 18, 2025

Based on information from open sources, government experts linked multiple Phobos ransomware variants to Phobos intrusions due to observed similarities in Tactics, Techniques, and Procedures (TTPs). Phobos operation uses a ransomware-as-a-service (RaaS) model, it has been active since May 2019.

Ransomware

SecureWorld News

MAY 14, 2025

The FBI's Internet Crime Complaint Center (IC3) has released its 2024 Internet Crime Report, marking a record-breaking year in cybercrime. Other critical sectors, including manufacturing and government facilities, also faced significant threats. The report highlights a staggering $16.6 Since 2022, the U.S.

Cybercrime

SecureList

APRIL 23, 2025

The campaign, dubbed “Operation SyncHole”, has impacted at least six organizations in South Korea’s software, IT, financial, semiconductor manufacturing, and telecommunications industries, and we are confident that many more companies have actually been compromised. The software has since been updated with patched versions.

Malware

SecureList

DECEMBER 9, 2024

was used by tens of millions of websites approximately 4% of all sites on the internet which highlights the severity of the incident, whose full impact is yet to be determined. A potentially more impactful threat lies in the satellite internet access supply chain. Why does it matter? According to Cloudflare, Polyfill.io

Internet

SecureList

NOVEMBER 28, 2024

Most of the infections were still at financial institutions in Vietnam, with one victim active in the manufacturing industry. The secure USB drive was developed by a government entity in Southeast Asia to securely store and transfer files between machines in sensitive environments. In terms of victimology, there was little change.

Malware

Security Boulevard

MARCH 21, 2025

NCSC) FBI Warns of Increasing Threat of Cyber Criminals Utilizing Artificial Intelligence (FBI) 4 - Groups call for IoT end-of-life disclosure law Manufacturers of internet-of-things (IoT) devices should be required by law to disclose the products theyre no longer supporting, so that customers are aware of the security risks those products pose.

Risk

IT Security Guru

MARCH 26, 2025

Until the last ten years or so, we would largely categorise robots as reactive with mostly industrial applications in areas like manufacturing or warehousing. At an individual level, this will change how we interact with each other as citizens, with our governments, perform our jobs and consume goods and services.

Cybersecurity

Digital Shadows

MARCH 17, 2025

The ransomware targets unpatched internet-facing servers, impacting systems across 70+ countries in sectors like critical infrastructure, health care, governments, education, technology, manufacturing, and small- to medium-sized businesses.

VPN

Penetration Testing

JUNE 9, 2025

The most notable discovery in SentinelLABS’ investigation was that threat actors carried out reconnaissance against SentinelOne’s Internet-facing servers in October 2024, and even compromised a third-party IT logistics firm responsible for handling employee hardware.

Penetration Testing

Security Boulevard

MAY 2, 2025

Segment networks and block outbound connections from internet-facing servers to prevent lateral movement and privilege escalation. governments cloud security, CISA released in December 2024 a set of required cybersecurity actions for federal civilian agencies mostly focused on applying secure configuration baselines to their cloud apps. (on-demand

Cybersecurity

SecureList

MAY 28, 2025

This included the contact list, the list of installed applications, and various device identifiers, such as the manufacturer, model, and fingerprint. Upon startup, the malware would collect key information from the infected device.

Banking

SecureList

MARCH 13, 2025

Localtonet is a reverse proxy server providing internet access to local services. An example download link is: hxxp://45[.]156[.]21[.]148:8443/winuac.exe 148:8443/winuac.exe Besides cloudflared and Gost, the attackers used cloud tunnels like ngrok and Localtonet. hxxp://localtonet[.]com/nssm-2.24.zip com/nssm-2.24.zip zip hxxp://localtonet[.]com/download/localtonet-win-64.zip

Energy and Utilities

Malwarebytes

JANUARY 8, 2025

The White House announced the launch of the US Cyber Trust Mark which aims to help buyers make an informed choice about the purchase of wireless internet-connected devices, such as baby monitors, doorbells, thermostats, and more. The companies and groups said they are committed to increase cybersecurity for the products they sell.

Computers and Electronics

SecureList

JULY 25, 2025

Entities across multiple sectors were affected: government, finance, manufacturing, forestry, and agriculture. SharePoint requires Internet Information Services (IIS) to be configured in integrated mode. This is where the first Microsoft SharePoint Server Spoofing Vulnerability CVE-2025-49706 comes into play.

Authentication

Schneier on Security

FEBRUARY 26, 2025

Last month, the UK government demanded that Apple weaken the security of iCloud for users worldwide. But the British law is written in a way that requires Apple to give its government access to anyone, anywhere in the world. Should the UK government persist in its demands, the ramifications will be profound in two ways.

Computers and Electronics

GlobalSign

JULY 25, 2025

Digital Seals for Certificates of Conformity: A Game-Changer for Automotive Manufacturers Jun 25, 2025 In this blog, we explore the role of digital seals in CoCs and how they are transforming the automotive industry.

Risk

Security Affairs

FEBRUARY 20, 2025

China-linked APT group Salt Typhoon (also known as FamousSparrow and GhostEmperor ) and has been active since at least 2019 and targeted government entities and telecom companies. Using internet scanning data, Insikt Group identified more than 12,000 Cisco network devices with their web UIs exposed to the internet.

Telecommunications

Centraleyes

MARCH 24, 2025

The act applies to both manufacturers and suppliers of software and hardware products sold within the EU. It establishes common cybersecurity rules for manufacturers and developers of products with digital elements, and it covers both hardware and software. The Cyber Resilience Act is the first EU-wide legislation of its kind.

Manufacturing

The Last Watchdog

NOVEMBER 10, 2024

The Internet of Things is growing apace. It requires technical innovation to mesh with supporting security standards and emerging government regulations much quicker and smoother than has ever happened in the Internet era. Related: The Top 12 IoT protocols Deployment of 5G and AI-enhanced IoT systems is accelerating.

IoT

Security Boulevard

MARCH 18, 2025

Cyber threats are growing in sophistication, and adversaries are continually evolving their methods, targeting businesses, governments, and individuals with precision. Enhanced Datasets for Advanced Threat Analysis While traditional internet intelligence (e.g., But how do you stay ahead of these relentless attackers?

DNS

Security Boulevard

MARCH 17, 2025

Data Broker Brags About Having Highly Detailed Personal Information on Nearly All Internet Users Gizmodo An owner of a data broker business brags and showcases his company's ability to deliver "personalized messaging at scale." Of course, personalized in this context means leveraging extensive amounts of data collected on people.

Surveillance

SecureWorld News

MAY 29, 2025

According to an FBI alert , t he campaign, active since April 2025, primarily targets current and former federal and state government officials and their contacts. Report suspicious activity: Enco urage reporting of any suspicious communications to appropriate security teams and to the FBI's Internet Crime Complaint Center (IC3).

Scams

GlobalSign

JULY 16, 2025

Digital Seals for Certificates of Conformity: A Game-Changer for Automotive Manufacturers Jun 25, 2025 In this blog, we explore the role of digital seals in CoCs and how they are transforming the automotive industry.

IoT

GlobalSign

JULY 14, 2025

More from the author > GlobalSign Newsletter & Blog Register Here Register Here Connect with us Recent Blogs Digital Seals for Certificates of Conformity: A Game-Changer for Automotive Manufacturers Jun 25, 2025 In this blog, we explore the role of digital seals in CoCs and how they are transforming the automotive industry.

Insurance

SecureWorld News

MARCH 5, 2025

This article explores how the latest tariffs could reshape cybersecurity for enterprises, cybersecurity vendors, and government agencies. China trade war, Chinese nation-state hackers ramped up cyber espionage campaigns against American companies and government agencies. Trade tensions often escalate into the digital realm.

Cyber Risk

The Last Watchdog

NOVEMBER 1, 2024

Russian actors “manufactured and amplified” a recent viral video that falsely showed a person tearing up ballots in Pennsylvania, the FBI and two other federal agencies recently disclosed. audiences with hidden Russian government messaging. They’re at it again. LW: Quite a high degree of coordination on the part of the adversaries.

Media

Security Boulevard

MARCH 3, 2025

Vulnerabilities A single default password exposes access to dozens of apartment buildings TechCrunch Internet-connected entrance keypads/locks used by some apartment complexes have a default password. The manufacturer (Hirsch) does not plan a security fix. Allegedly, DOGE left endpoints of various government agencies exposed.

Surveillance

GlobalSign

JUNE 25, 2025

As part of the EU’s digital transformation, recent regulations are encouraging manufacturers to issue CoCs in electronic form. A CoC is based on Regulation (EU) 2018/858 and it certifies that a vehicle meets EU type-approval standards (a set of regulatory, technical and safety requirements vehicle manufacturers must adhere to).

Manufacturing

Zero Day

AUGUST 1, 2025

PT Reviewed by Elyse Betters Picaro Techa Tungateja / Getty Images ZDNET's key takeaways Using AIs effectively means focusing on guidance and governance. So, the trust is also coming from the platform and all this governance," he said. Written by Mark Samuels, Senior Contributor Senior Contributor Aug. 1, 2025 at 8:12 a.m.

Artificial Intelligence

Zero Day

JUNE 23, 2025

  Also:  My favorite electric screwdriver manufacturer just released the ultimate toolkit for tinkerers Nowadays, the middle ground has been squeezed to the point that it's hard to find good tools at a decent price. You can find stuff, but it takes a lot of trial and error to sort the wheat from the chaff.

Password Management

Schneier on Security

JUNE 25, 2020

van Oorschot: Abstract: Best practices for Internet of Things (IoT) security have recently attracted considerable attention worldwide from industry and governments, while academic research has highlighted the failure of many IoT product manufacturers to follow accepted practices. " by Christopher Bellman and Paul C.

IoT

Schneier on Security

SEPTEMBER 28, 2022

The Atlantic Council has published a report on securing the Internet of Things: “Security in the Billions: Toward a Multinational Strategy to Better Secure the IoT Ecosystem.”

IoT

Schneier on Security

APRIL 7, 2022

government has previously attributed to the Main Intelligence Directorate of the General Staff of the Armed Forces of the Russian Federation (the GRU). The operation copied and removed malware from vulnerable internet-connected firewall devices that Sandworm used for command and control (C2) of the underlying botnet.

Manufacturing

Schneier on Security

NOVEMBER 13, 2018

Due to ever-evolving technological advances, manufacturers are connecting consumer goods­ -- from toys to lightbulbs to major appliances­ -- to the internet at breakneck speeds. This is the Internet of Things, and it's a security nightmare. But like nearly all innovation, there are risks involved. But software is different.

IoT

Adam Shostack

JANUARY 2, 2025

[no description provided] Today, a global coalition led by civil society and technology experts sent a letter asking the government of Australia to abandon plans to introduce legislation that would undermine strong encryption.

Internet

Thales Cloud Protection & Licensing

SEPTEMBER 11, 2018

This aptly describes the Internet of Things (IoT), where many small things are coming together to shape what we all hope will deliver a great leap in the way we live and do business. Typically, when they are manufactured, IoT devices receive their initial identity in the form of a “digital birth certificate.”

Manufacturing