Russia Targets Moldovan Election in Disinformation Play – Dark Reading
Researchers have tracked a Russian disinformation campaign against upcoming Moldovan elections, linking it to a previous campaign that began in 2022. – Read More
September 2025
Chinese Hackers RedNovember Target Global Governments Using Pantegana and Cobalt Strike – The Hacker News
A suspected cyber espionage activity cluster that was previously found targeting global government and private sector organizations spanning Africa, Asia, North America, South America, and Oceania has been assessed to…
UNC5221 Uses BRICKSTORM Backdoor to Infiltrate U.S. Legal and Technology Sectors – The Hacker News
Companies in the legal services, software-as-a-service (SaaS) providers, Business Process Outsourcers (BPOs), and technology sectors in the U.S. have been targeted by a suspected China-nexus cyber espionage group to deliver…
Two Critical Flaws Uncovered in Wondershare RepairIt Exposing User Data and AI Models – The Hacker News
Cybersecurity researchers have disclosed two security flaws in Wondershare RepairIt that exposed private user data and potentially exposed the system to artificial intelligence (AI) model tampering and supply chain risks.…
Threat Actor Deploys ‘OVERSTEP’ Backdoor in Ongoing SonicWall SMA Attacks – Dark Reading
Hackers tracked as UNC6148 are attacking SonicWall security devices by installing hidden software, allowing them to control systems, steal passwords, and hide their activities. – Read More
The September Orange Rag Is Here! – Legal IT Insider
Welcome to the September Orange Rag, where I expect much like me, the summer seems a long distant memory and you’re just a bit swamped as the end of the…
How One Bad Password Ended a 158-Year-Old Business – The Hacker News
Most businesses don’t make it past their fifth birthday – studies show that roughly 50% of small businesses fail within the first five years. So when KNP Logistics Group (formerly…
Feds Tie ‘Scattered Spider’ Duo to $115M in Ransoms – Krebs on Security
U.S. prosecutors last week levied criminal hacking charges against 19-year-old U.K. national Thalha Jubair for allegedly being a core member of Scattered Spider, a prolific cybercrime group blamed for extorting…
New YiBackdoor Malware Shares Major Code Overlaps with IcedID and Latrodectus – The Hacker News
Cybersecurity researchers have disclosed details of a new malware family dubbed YiBackdoor that has been found to share “significant” source code overlaps with IcedID and Latrodectus. “The exact connection to…
Macs go phishing as GitHub impostors drop Atomic stealer – CSO Online
In an active, large-scale campaign, attackers are posing as legitimate brands on GitHub Pages to target macOS users with the data-skimming “Atomic” stealer. According to recent findings from LastPass, which…
What I learned extending zero trust to the storage layer – CSO Online
When I first started thinking seriously about applying zero trust principles to the storage layer, it wasn’t because of some white paper or vendor presentation. It was because of what…
iframe Security Exposed: The Blind Spot Fueling Payment Skimmer Attacks – The Hacker News
Think payment iframes are secure by design? Think again. Sophisticated attackers have quietly evolved malicious overlay techniques to exploit checkout pages and steal credit card data by bypassing the very…
Nach Cyberangriff: IT-Störung in Hoppegarten dauert an – CSO Online
Der Cyberangriff auf die Gemeinde Hoppegarten im August sorgt aktuell noch immer für IT-Probleme. Vectors Bang – shutterstock.com Am 10. August funktionierte in der Gemeinde Hoppegarten (Brandenburg) fast nichts mehr.…
SRA defends use of MCQs in SQE exams – Legal Cheek
Regulator says approach is fair, efficient and not just recall The Solicitors Regulation Authority (SRA) has published a new explainer justifying its use of single best answer multiple-choice questions (MCQs)…
Npm Package Hides Malware in Steganographic QR Codes – Dark Reading
The poisoned package, purporting to be a JavaScript utility, threatens the software supply chain with a highly obsfuscated credential stealer. – Read More