Google on Wednesday disclosed that it worked with industry partners to disrupt the infrastructure of a suspected China-nexus cyber espionage group tracked as UNC2814 that breached at least 53 organizations…
Cybersecurity researchers have disclosed multiple security vulnerabilities in Anthropic’s Claude Code, an artificial intelligence (AI)-powered coding assistant, that could result in remote code execution and theft of API credentials. “The…
When Anthropic launched its legal plugin on 3 February, public markets interpreted it as an existential threat to legal software vendors. Yesterday’s (24 February) announcements show what adaptation looks like.…
Linked to North Korean fake job-recruitment campaigns, the poisoned repositories are aimed at establishing persistent access to infected machines. – Read More
The notorious cybercrime collective known as Scattered LAPSUS$ Hunters (SLH) has been observed offering financial incentives to recruit women to pull off social engineering attacks. The idea is to hire…
By Ashwin Gohil Thomson Reuters this week announced that CoCounsel, its AI platform, is now accessible to one million professionals – a significant milestone for a product launched only in…
Triage is supposed to make things simpler. In a lot of teams, it does the opposite. When you can’t reach a confident verdict early, alerts turn into repeat checks, back-and-forth,…
Attackers are bypassing email gateways through telephone-oriented attack delivery (TOAD), in which the only email payload is a phone number. – Read More
Over the last few years, the legal sector has found itself increasingly in the crosshairs for sophisticated cybercriminals due to the immense value of the data they hold. The post…
For many SME law firms and claims management companies operating in the consumer claims sector, the challenge is no longer identifying demand. It is funding it. The post Litigation finance:…
Cybersecurity researchers have discovered four malicious NuGet packages that are designed to target ASP.NET web application developers to steal sensitive data. The campaign, discovered by Socket, exfiltrates ASP.NET Identity data,…
February has been a month that reminded us just how quickly the legal tech ground can shift under our feet. Our most‑read story of the month was the launch of…
Agencies strongly encourage immediate investigation of potential compromise of Cisco Catalyst SD-WAN. – Read More
ICS/OT experts have devised a scoring system for rating the severity and effects of cybersecurity events in operational technology environments. – Read More
Microsoft says it has uncovered a coordinated campaign targeting software developers through malicious repositories posing as legitimate Next.js projects and technical assessments. The campaign employs carefully crafted lures to blend…