Winnti APT41 Targets Japanese Firms in RevivalStone Cyber Espionage CampaignWinnti has launched a campaign named RevivalStone targeting Japanese manufacturing and energy sectors, indicating an ongoing cyber-espionage threat from China.
China-Linked Earth Alux Uses VARGEIT and COBEACON in Multi-Stage Cyber IntrusionsA new China-linked threat actor, Earth Alux, targets key sectors in APAC and LATAM regions using advanced tactics and sophisticated tools.
Cisco confirms attackers stole "non-public" data, shuts down access to compromised DevHub environmentCisco limited public access to its developer environment after a significant data breach by the threat actor IntelBroker.The breach compromised sensitive company data, highlighting vulnerabilities in public-facing developer environments.Ongoing investigation finds no evidence of confidential personal or financial data being included in the stolen files.
Microsoft: Windows CLFS Vulnerability Could Lead to 'Widespread Deployment and Detonation of Ransomware'Microsoft identifies a critical zero-day vulnerability in CLFS used for ransomware deployment.
Cyber firm KnowBe4 hired a fake IT worker from North KoreaA remote worker hired as a software engineer by KnowBe4 was a North Korean threat actor, using stolen identity and AI-generated image.
New Cyber Threat Targets Azerbaijan and Israel Diplomats, Stealing Sensitive DataA new threat actor, Actor240524, is targeting Azerbaijan and Israel to steal sensitive data using sophisticated phishing attacks.
Winnti APT41 Targets Japanese Firms in RevivalStone Cyber Espionage CampaignWinnti has launched a campaign named RevivalStone targeting Japanese manufacturing and energy sectors, indicating an ongoing cyber-espionage threat from China.
China-Linked Earth Alux Uses VARGEIT and COBEACON in Multi-Stage Cyber IntrusionsA new China-linked threat actor, Earth Alux, targets key sectors in APAC and LATAM regions using advanced tactics and sophisticated tools.
Cisco confirms attackers stole "non-public" data, shuts down access to compromised DevHub environmentCisco limited public access to its developer environment after a significant data breach by the threat actor IntelBroker.The breach compromised sensitive company data, highlighting vulnerabilities in public-facing developer environments.Ongoing investigation finds no evidence of confidential personal or financial data being included in the stolen files.
Microsoft: Windows CLFS Vulnerability Could Lead to 'Widespread Deployment and Detonation of Ransomware'Microsoft identifies a critical zero-day vulnerability in CLFS used for ransomware deployment.
Cyber firm KnowBe4 hired a fake IT worker from North KoreaA remote worker hired as a software engineer by KnowBe4 was a North Korean threat actor, using stolen identity and AI-generated image.
New Cyber Threat Targets Azerbaijan and Israel Diplomats, Stealing Sensitive DataA new threat actor, Actor240524, is targeting Azerbaijan and Israel to steal sensitive data using sophisticated phishing attacks.
Unmasking EncryptHub: Help from ChatGPT & OPSEC blundersEncryptHub is a humanized example of a cybercriminal, showcasing ordinary traits and significant operational security mistakes.
Cyber firm KnowBe4 unknowingly hired a North Korean hacker - and it went exactly as you might thinkKnowBe4 experienced an attempted security breach by a North Korean threat actor posing as a remote software engineer, emphasizing the importance of robust security measures.