Germany’s Federal Office for the Protection of the Constitution (aka Bundesamt für Verfassungsschutz or BfV) and Federal Office for Information Security (BSI) have issued a joint advisory warning of a… Read More »German Agencies Warn of Signal Phishing Targeting Politicians, Military, Journalists
Cybersecurity researchers have taken the wraps off a gateway-monitoring and adversary-in-the-middle (AitM) framework dubbed DKnife that’s operated by China-nexus threat actors since at least 2019. The framework comprises seven Linux-based… Read More »China-Linked DKnife AitM Framework Targets Routers for Traffic Hijacking, Malware Delivery
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered Federal Civilian Executive Branch (FCEB) agencies to strengthen asset lifecycle management for edge network devices and remove those that no… Read More »CISA Orders Removal of Unsupported Edge Devices to Reduce Federal Network Risk
A previously undocumented cyber espionage group operating from Asia broke into the networks of at least 70 government and critical infrastructure organizations across 37 countries over the past year, according… Read More »Asian State-Backed Group TGR-STA-1030 Breaches 70 Government, Infrastructure Entities
As you know, enterprise network security has undergone significant evolution over the past decade. Firewalls have become more intelligent, threat detection methods have advanced, and access controls are now more… Read More »How Samsung Knox Helps Stop Your Network Security Breach
Cybersecurity researchers have discovered a new supply chain attack in which legitimate packages on npm and the Python Package Index (PyPI) repository have been compromised to push malicious versions to… Read More »Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware
Artificial intelligence (AI) company Anthropic revealed that its latest large language model (LLM), Claude Opus 4.6, has found more than 500 previously unknown high-severity security flaws in open-source libraries, including… Read More »Claude Opus 4.6 Finds 500+ High-Severity Flaws Across Major Open-Source Libraries
The distributed denial-of-service (DDoS) botnet known as AISURU/Kimwolf has been attributed to a record-setting attack that peaked at 31.4 Terabits per second (Tbps) and lasted only 35 seconds. Cloudflare, which… Read More »AISURU/Kimwolf Botnet Launches Record-Setting 31.4 Tbps DDoS Attack
This week didn’t produce one big headline. It produced many small signals — the kind that quietly shape what attacks will look like next. Researchers tracked intrusions that start in… Read More »ThreatsDay Bulletin: Codespaces RCE, AsyncRAT C2, BYOVD Abuse, AI Cloud Intrusions & 15+ Stories
The elusive Iranian threat group known as Infy (aka Prince of Persia) has evolved its tactics as part of efforts to hide its tracks, even as it readied new command-and-control… Read More »Infy Hackers Resume Operations with New C2 Servers After Iran Internet Blackout Ends