2 Android Zero-Day Bugs Under Active Exploit – Dark Reading
Neither security issue requires user interaction; and one of the vulnerabilities was used to unlock a student activist’s device in an attempt to install spyware. – Read More
2025
Cryptocurrency Miner and Clipper Malware Spread via SourceForge Cracked Software Listings – The Hacker News
Threat actors have been observed distributing malicious payloads such as cryptocurrency miner and clipper malware via SourceForge, a popular software hosting service, under the guise of cracked versions of legitimate…
BADBAZAAR and MOONSHINE: Spyware targeting Uyghur, Taiwanese and Tibetan groups and civil society actors – NCSC News
The NCSC and partners publish new information and mitigation measures for those at high risk from two spyware variants. – Read More
BADBAZAAR and MOONSHINE: Technical analysis and mitigations – NCSC News
This advisory provides new and collated threat intelligence on two variants of spyware known as BADBAZAAR and MOONSHINE, and includes advice for app store operators, developers and social media companies…
NCSC and partners share guidance for communities at high risk of digital surveillance – NCSC News
Spyware variants MOONSHINE and BADBAZAAR are being used to target mobile devices of individuals around the world. – Read More
Commercial Real Estate sector set to miss major decarbonisation target by a decade – Legal Futures
Research by commercial real estate data and technology company, Search Acumen, suggests that it will take until at least 2040 for all rented commercial properties to meet the 2030 MEES…
Dangerous, Windows-Hijacking Neptune RAT Scurries Into Telegram, YouTube – Dark Reading
The malware’s creators insist a new open source version of Neptune is for educational use by pen testers, but a raft of sophisticated backdoor and evasion capabilities says otherwise. –…
How Democratized Development Creates a Security Nightmare – Dark Reading
No-code and low-code platforms offer undeniable benefits. But when security is an afterthought, organizations risk deploying vulnerable applications that expose sensitive data and critical systems. – Read More
Internal Data Leakage: An Overlooked Contract Risk in Enterprise AI – Contract Nerds
Key Takeaways: When rolling out an AI tool across your organization, consider how company data might be exposed across internal teams. Internal data access isn’t just a governance concern—contracts professionals…
Business Skills in Contract Negotiations: The Ultimate Success Combo – Contract Nerds
I’ve said it before, and I’ll say it again—contracts are not legal documents; they are business documents that memorialize business transactions. While many in-house counsel recognize the importance of being…
Ransomware-Attacke auf Europcar – CSO Online
Europcar hat einen Cyberangriff mit Datendiebstahl erlitten. josera – shutterstock.com Im Darknet sind kürzlich Hinweise auf einen Cyberangriff bei Europcar aufgetaucht, bei dem Kundendaten und andere vertrauliche Informationen entwendet wurden.…
Chinese ToddyCat abuses ESET antivirus bug for malicious activities – CSO Online
China-backed APT group ToddyCat has been found exploiting a medium-severity vulnerability in ESET antivirus software to sneak malicious code onto vulnerable systems. Tracked as CVE-2024-11859, the flaw is a dynamic…
While PPI took almost 9 years, PCP & future high volume claimants will be completed within 18 months – Legal Futures
286,075 registered …. AI claims accounts across our agent’s AI platforms to March 2025. That’s how quickly compliant claimants can be onboarded & claims detected to a “white label” AI…
Agentic AI in the SOC – Dawn of Autonomous Alert Triage – The Hacker News
Security Operations Centers (SOCs) today face unprecedented alert volumes and increasingly sophisticated threats. Triaging and investigating these alerts are costly, cumbersome, and increases analyst fatigue, burnout, and attrition. While artificial…
Dealstack raises $5.5m seed funding to modernise private capital operations – Interview – Legal IT Insider
We speak with co-founder Seb Lapinski about the ambitions of the private equity platform that says it’s more legaltech than fintech, and is backed by a who’s who of global…