Your blog category
The U.S. Treasury Department has announced that it’s removing sanctions against Tornado Cash, a cryptocurrency mixer service that has been accused of aiding the North Korea-linked Lazarus Group to launder… Read More »U.S. Treasury Lifts Tornado Cash Sanctions Amid North Korea Money Laundering Probe
Threat hunters have uncovered a new threat actor named UAT-5918 that has been attacking critical infrastructure entities in Taiwan since at least 2023. “UAT-5918, a threat actor believed to be… Read More »UAT-5918 Targets Taiwan’s Critical Infrastructure Using Web Shells and Open-Source Tools
The threat actors behind the Medusa ransomware-as-a-service (RaaS) operation have been observed using a malicious driver dubbed ABYSSWORKER as part of a bring your own vulnerable driver (BYOVD) attack designed… Read More »Medusa Ransomware Uses Malicious Driver to Disable Anti-Malware with Stolen Certificates
Two known threat activity clusters codenamed Head Mare and Twelve have likely joined forces to target Russian entities, new findings from Kaspersky reveal. “Head Mare relied heavily on tools previously… Read More »Kaspersky Links Head Mare to Twelve, Targeting Russian Entities via Shared C2 Servers
The China-linked advanced persistent threat (APT) group. known as Aquatic Panda has been linked to a “global espionage campaign” that took place in 2022 targeting seven organizations. These entities include… Read More »China-Linked APT Aquatic Panda: 10-Month Campaign, 7 Global Targets, 5 Malware Families
After conducting over 10,000 automated internal network penetration tests last year, vPenTest has uncovered a troubling reality that many businesses still have critical security gaps that attackers can easily exploit.… Read More »10 Critical Network Pentest Findings IT Teams Overlook
Two now-patched security flaws impacting Cisco Smart Licensing Utility are seeing active exploitation attempts, according to SANS Internet Storm Center. The two critical-rated vulnerabilities in question are listed below – … Read More »Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility
YouTube videos promoting game cheats are being used to deliver a previously undocumented stealer malware called Arcane likely targeting Russian-speaking users. “What’s intriguing about this malware is how much it… Read More »YouTube Game Cheats Spread Arcane Stealer Malware to Russian-Speaking Users
Veeam has released security updates to address a critical security flaw impacting its Backup & Replication software that could lead to remote code execution. The vulnerability, tracked as CVE-2025-23120, carries… Read More »Veeam and IBM Release Patches for High-Risk Flaws in Backup and AIX Systems
Cybersecurity isn’t just another checkbox on your business agenda. It’s a fundamental pillar of survival. As organizations increasingly migrate their operations to the cloud, understanding how to protect your digital… Read More »How to Protect Your Business from Cyber Threats: Mastering the Shared Responsibility Model