A 26-year-old Ukrainian national has been indicted in the United States for allegedly participating in the Raccoon Stealer malware-as-a-service operation, widely recognized within cybersecurity spheres for its potential to facilitate extensive data theft. Mark Sokolovsky was taken into custody by…
Governance & Risk Management, Patch Management, Vulnerability Assessment & Penetration Testing (VA/PT) Startup Plans Unified Remediation for Misconfigurations and Patching, Compliance Michael Novinson ( MichaelNovinson) • September 17, 2025 Tal Kollender, founder and CEO, Remedio (Image: Remedio) Remedio, a startup…
A recent ransomware incident attributed to the RA World group has highlighted a troubling intersection between cyber espionage and financial extortion. In November 2024, an unnamed software and services company in Asia became the target of a sophisticated attack employing…
Microsoft Disrupts ‘RaccoonO365’ Phishing Service In a significant development in the cybersecurity landscape, Microsoft has announced the dismantling of the ‘RaccoonO365’ phishing service, a notable player in the realm of cybercrime. This disruptive action targets a sophisticated network that has…
A significant security vulnerability in the Edimax IC-7100 network camera has become a target for cybercriminals leveraging various variants of the Mirai botnet malware since at least May 2024. This unpatched flaw, registered as CVE-2025-1316, boasts a critical score of…
Recent findings from Qihoo 360’s Network Security Research Lab indicate that the Fodcha distributed denial-of-service (DDoS) botnet has re-emerged with enhanced capabilities. The updated botnet incorporates modifications to its communication protocol and has introduced the ability to demand cryptocurrency payments…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime MuddyWater Resumes Use of Bulletproof Hosting and Custom Malware Mathew J. Schwartz (euroinfosec) • September 17, 2025 Image: Iurii Stepanov/Shutterstock An Iranian state-sponsored hacking group, MuddyWater, is reportedly reviving its tactics by…
A recent phishing assault has emerged, allegedly utilizing counterfeit PDF documents hosted on the Webflow content delivery network (CDN) with the aim of capturing credit card data and executing financial fraud. This operation specifically targets individuals searching for academic materials…
The Week in Breach News: September 3, 2025 In a significant cybersecurity event that has garnered attention across the tech landscape, Kaseya has reported a data breach affecting several of its clients. This breach not only raises concerns about the…
A recently uncovered security vulnerability in Apache Tomcat has begun to see active exploitation shortly after its disclosure. The flaw, designated as CVE-2025-24813, was made publicly available along with a proof-of-concept (PoC) within just 30 hours of its initial announcement.…
