Lazarus Group Picks a New Poison: Medusa Ransomware – Dark Reading
The North Korean threat group also leveraged Comebacker backdoor, Blindingcan RAT, and info stealer Infohook in its recent attacks. – Read More
Cyber defense: From reactive to proactive – CSO Online
When systems are attacked, we should respond. But how much better would it be if we could anticipate attacks before they strike and stop them with a proactive defense? Faced…
RoguePilot Flaw in GitHub Codespaces Enabled Copilot to Leak GITHUB_TOKEN – The Hacker News
A vulnerability in GitHub Codespaces could have been exploited by bad actors to seize control of repositories by injecting malicious Copilot instructions in a GitHub issue. The artificial intelligence (AI)-driven…
Pinsent Masons selects Legora for corporate, commercial and property groups – Interview – Legal IT Insider
Pinsent Masons announced yesterday (23 February) that it has selected legal GenAI tool Legora across its corporate, commercial and property groups following a successful pilot programme. This partnership will bring…
Why more council tenants are taking legal action over dangerous living conditions – Legal Futures
Over the past three years, the number of council tenants pursuing legal action over unsafe, unhealthy or structurally compromised homes has risen sharply. The post Why more council tenants are…
Intapp collaborates with Anthropic to build industry-specific agents – Legal IT Insider
Intapp announced today (24 February) that it will build industry-specific agents powered by Anthropic’s large language model Claude. These agents will complement Claude with industry-specific workflows, best practice playbooks, and…
UAC-0050 Targets European Financial Institution With Spoofed Domain and RMS Malware – The Hacker News
A Russia-aligned threat actor has been observed targeting a European financial institution as part of a social engineering attack to likely facilitate intelligence gathering or financial theft, signaling a possible…
As Cybersecurity Firms Chase AI, VC Market Skyrockets – Dark Reading
Investments in cybersecurity startups took off in 2025, as venture capital firms focused not just on AI-native tech, but talent as well. – Read More
Identity Prioritization isn’t a Backlog Problem – It’s a Risk Math Problem – The Hacker News
Most identity programs still prioritize work the way they prioritize IT tickets: by volume, loudness, or “what failed a control check.” That approach breaks the moment your environment stops being…
Lazarus Group Uses Medusa Ransomware in Middle East and U.S. Healthcare Attacks – The Hacker News
The North Korea-linked Lazarus Group (aka Diamond Sleet and Pompilus) has been observed using Medusa ransomware in an attack targeting an unnamed entity in the Middle East, according to a…
Shai-Hulud-style NPM worm hits CI pipelines and AI coding tools – CSO Online
A massive Shai-Hulud-style npm supply chain worm is hitting the software ecosystem, burrowing through developer machines, CI pipelines, and AI coding tools. Socket researchers uncovered the active attack campaign and…
Financial & Legal – Legal Futures
Financial & Legal is a UK‑based insurer specialising in the delivery of both established and bespoke After the Event (ATE), Before the Event (BTE), assistance, and ancillary insurance solutions, all…
UnsolicitedBooker Targets Central Asian Telecoms With LuciDoor and MarsSnake Backdoors – The Hacker News
The threat activity cluster known as UnsolicitedBooker has been observed targeting telecommunications companies in Kyrgyzstan and Tajikistan, marking a shift from prior attacks aimed at Saudi Arabian entities. The attacks…
Bitcoin-Milliarden von Raubkopie-Portal im Visier der Justiz – CSO Online
Urheberrechtsverstöße sind ein einträglisches Geschäft. PXLR Studio – shutterstock.com In Leipzig hat der Prozess um den illegalen Streamingdienst «movie2k.to» und einen Milliardengewinn mit Bitcoins begonnen. Vor dem Landgericht ist der…
SQE confidentiality rules relaxed after students complain of overly broad policy – Legal Cheek
SRA makes changes The Solicitors Regulation Authority (SRA) has updated its candidate confidentiality policy for the Solicitors Qualifying Examination (SQE), narrowing the scope of what students are required to keep…