Cybersecurity experts have recently illuminated the mechanisms of a global ransomware operation attributed to Mikhail Pavlovich Matveev, a Russian national indicted by U.S. authorities for his involvement in a multitude of cyberattacks worldwide. Matveev resides in St. Petersburg and utilizes…
Widespread Compromise of SonicWall SSL VPN Devices Raises Alarm in Cybersecurity Community On October 11, 2025, cybersecurity firm Huntress disclosed a significant breach involving SonicWall SSL VPN devices that has resulted in extensive unauthorized access to numerous customer environments. The…
On Tuesday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced the addition of three vulnerabilities affecting Mitel MiCollab and Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) catalog. This action was taken in response to evidence indicating that…
In an alarming series of spear-phishing attacks between October and November 2021, the Russia-linked advanced persistent threat group APT29 targeted European diplomatic missions and Ministries of Foreign Affairs. This activity showcases a troubling trend of cyberespionage aimed at sensitive political…
Critical Infrastructure Security, Government, Industry Specific US Cyber Defense Agency Faces Crisis Amid Shutdown and Resource Shortfalls Chris Riotta (@chrisriotta) • October 10, 2025 The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is currently grappling with significant challenges that threaten…
Recent research has unveiled that North Korean scammers are attempting to deceive U.S. companies into hiring them for architectural design roles, utilizing fabricated profiles, resumes, and Social Security numbers to masquerade as legitimate professionals. This scheme aligns with long-standing efforts…
The U.S. Department of Justice (DoJ) has formally declared the disruption of the BlackCat ransomware operation, providing a decryption tool for over 500 victims affected by the malware. This intervention is seen as a significant step in combating ransomware threats…
TLDR CoinGlass experienced a significant proxy attack that disrupted its global service. No data breaches have been reported as a result of the incident. The company’s technical team successfully restored services and is currently investigating the attack. This incident underscores…
A variant of the notorious Mirai botnet has been identified exploiting a recently disclosed vulnerability in Four-Faith industrial routers, with operations reportedly commencing in early November 2024. The primary aim of this botnet is to facilitate distributed denial-of-service (DDoS) attacks,…
A noted advanced persistent threat (APT) group linked to Iran has updated its malware arsenal, introducing a new backdoor known as Marlin. This marks an ongoing espionage campaign that has been active since April 2018. The Slovak cybersecurity firm ESET…
