Alleged Jabber Zeus Coder ‘MrICQ’ in U.S. Custody – Krebs on Security
A Ukrainian man indicted in 2012 for conspiring with a prolific hacking group to steal tens of millions of dollars from U.S. businesses was arrested in Italy and is now…
2025
ASD Warns of Ongoing BADCANDY Attacks Exploiting Cisco IOS XE Vulnerability – The Hacker News
The Australian Signals Directorate (ASD) has issued a bulletin about ongoing cyber attacks targeting unpatched Cisco IOS XE devices in the country with a previously undocumented implant known as BADCANDY.…
VinciWorks – Legal Futures
For over two decades, VinciWorks has been transforming how the legal sector approaches compliance, turning training and reporting into an engaging, measurable part of firm culture. The post VinciWorks appeared…
Cyber agencies produce ‘long overdue’ best practices for securing Microsoft Exchange Server – CSO Online
Cyber agencies from three countries including the US have issued a list of security best practices for protecting Microsoft Exchange Server, a venerable on-premises email server that many IT departments…
UNC6384 Targets European Diplomatic Entities With Windows Exploit – Dark Reading
The spear-phishing campaign uses fake European Commission and NATO-themed lures to trick diplomatic personnel into clicking malicious links. – Read More
Ribbon Communications Breach Marks Latest Telecom Attack – Dark Reading
The US telecom company disclosed that suspected nation-state actors first gained access to its network in December of last year, though it’s unclear if attackers obtained sensitive data. – Read…
OpenAI Unveils Aardvark: GPT-5 Agent That Finds and Fixes Code Flaws Automatically – The Hacker News
OpenAI has announced the launch of an “agentic security researcher” that’s powered by its GPT-5 large language model (LLM) and is programmed to emulate a human expert capable of scanning,…
Nation-State Hackers Deploy New Airstalk Malware in Suspected Supply Chain Attack – The Hacker News
A suspected nation-state threat actor has been linked to the distribution of a new malware called Airstalk as part of a likely supply chain attack. Palo Alto Networks Unit 42…
Government Approach to Disrupt Cyber Scams is ‘Fragmented’ – Dark Reading
Users contend with cybersecurity scams throughout their day; a new Cyber Civic Engagement program wants to provide them with the skills to fight back. – Read More
China-Linked Hackers Exploit Windows Shortcut Flaw to Target European Diplomats – The Hacker News
A China-affiliated threat actor known as UNC6384 has been linked to a fresh set of attacks exploiting an unpatched Windows shortcut vulnerability to target European diplomatic and government entities between…
Claims Futures Conference 2025 – Legal Futures
The Claims Futures Conference was held in Manchester on 22 October and incorporated our long-running PI Futures conference, covering both personal injury and financial mis-selling. The post Claims Futures Conference…
China-Linked Tick Group Exploits Lanscope Zero-Day to Hijack Corporate Systems – The Hacker News
The exploitation of a recently disclosed critical security flaw in Motex Lanscope Endpoint Manager has been attributed to a cyber espionage group known as Tick. The vulnerability, tracked as CVE-2025-61932…
Claude AI vulnerability exposes enterprise data through code interpreter exploit – CSO Online
A newly disclosed vulnerability in Anthropic’s Claude AI assistant has revealed how attackers can weaponize the platform’s code interpreter feature to silently exfiltrate enterprise data, bypassing even the default security…
OpenAI launches Aardvark to detect and patch hidden bugs in code – CSO Online
OpenAI has unveiled Aardvark, a GPT-5-powered autonomous agent designed to act like a human security researcher capable of scanning, understanding, and patching code with the reasoning skills of a professional…
The MSP Cybersecurity Readiness Guide: Turning Security into Growth – The Hacker News
MSPs are facing rising client expectations for strong cybersecurity and compliance outcomes, while threats grow more complex and regulatory demands evolve. Meanwhile, clients are increasingly seeking comprehensive protection without taking…