China-Backed APT Group Culling Thai Government Data – Dark Reading
CeranaKeeper is bombarding Southeast Asia with data exfiltration attacks via file-sharing services such as Pastebin, OneDrive, and GitHub, researchers say. – Read More
2024
Near-‘perfctl’ Fileless Malware Targets Millions of Linux Servers – Dark Reading
Armed with a staggering arsenal of at least 20,000 different exploits for various Linux server misconfigurations, perfctl is everywhere, annoying, and tough to get rid of. – Read More
“Robing room banter” – Solicitor reprimanded for sexual comments – Legal Futures
An experienced criminal lawyer who made sexualised jokes in a courtroom at the expense of a probation officer has been reprimanded by the Solicitors Disciplinary Tribunal. The post “Robing room…
BSB decides not to publish its assessments of chambers – Legal Futures
The Bar Standards Board has decided against making public the assessments it intends to make of individual chambers, as part of its new approach to overseeing them. The post BSB…
Ban for partner who sought intimate relationship with junior – Legal Futures
A partner and registered foreign lawyer at the Brussels office of a major City law firm has been banned after admitting that he wanted a sexual relationship with a young…
Gap between EDI policy and practice at law firms and in-house – Legal Futures
There remains a gap between policy and practice when it comes to diversity, equality and inclusion at both law firms and in-house legal departments. The post Gap between EDI policy…
4 Ways to Fight AI-Based Fraud – Dark Reading
Generative AI is being used to make cyberscams more believable. Here’s how organizations can counter that using newly emerging tools and reliable methods. – Read More
North Korea’s ‘Stonefly’ APT Swarms US Private Co’s. for Profit – Dark Reading
Despite a $10 million bounty on one member, APT45 is not slowing down, pivoting from intelligence gathering to extorting funds for Kim Jong-Un’s regime. – Read More
NSA Releases 6 Principles of OT Cybersecurity – Dark Reading
Organizations can use this guide to make decisions for designing, implementing, and managing OT environments to ensure they are both safe and secure, as well as enable business continuity for…
Unix Printing Vulnerabilities Enable Easy DDoS Attacks – Dark Reading
All an attacker needs to exploit flaws in the Common Unix Printing System is a few seconds and less than 1 cent in computing costs. – Read More
Cloudflare reports thwarting largest-ever DDoS attack – CSO Online
Content distribution network Cloudflare has reported mitigating the largest distributed denial-of-service (DDoS) attack seen to date. The attack by unknown perpetrators, observed in September, was part of a bigger campaign…
Fake Trading Apps Target Victims Globally via Apple App Store and Google Play – The Hacker News
A large-scale fraud campaign leveraged fake trading apps published on the Apple App Store and Google Play Store, as well as phishing sites, to defraud victims, per findings from Group-IB.…
LLMs hallucinating non-existent developer packages could fuel supply chain attacks – CSO Online
Large Language Models (LLMs) have a serious “package hallucination” problem that could lead to a wave of maliciously-coded packages in the supply chain, researchers have discovered in one of the…
China-Linked CeranaKeeper Targeting Southeast Asia with Data Exfiltration – The Hacker News
A previously undocumented threat actor called CeranaKeeper has been linked to a string of data exfiltration attacks targeting Southeast Asia. Slovak cybersecurity firm ESET, which observed campaigns targeting governmental institutions…
Python-Based Malware Slithers Into Systems via Legit VS Code – Dark Reading
The prolific Chinese APT Mustang Panda is the likely culprit behind a sophisticated cyber-espionage attack that sets up persistent remote access to victim machines. – Read More