This week, cybersecurity experts reported a notable uptick in stealthy tactics employed by malicious actors, indicating that the real challenge may lie in identifying the threats that have already infiltrated systems rather than defending against external breaches. Attack methodologies increasingly…
Recently, the PlugX remote access Trojan has been identified disguising itself as the legitimate open-source Windows debugging tool x64dbg. This tactic aims to bypass cybersecurity defenses and enable unauthorized control over target systems. According to a report by Trend Micro…
Agentic AI, Cybercrime, Fraud Management & Cybercrime AI Firm Reveals Automated Cyber Extortion Campaign Targeting Critical Infrastructure Rashmi Ramesh (rashmiramesh_) • September 1, 2025 Image: Shutterstock Artificial intelligence company Anthropic has announced a significant disruption of a cybercrime operation that…
A serious security vulnerability has been identified in the Java Library of Apache Parquet. Successfully exploiting this flaw could enable a remote attacker to execute arbitrary code on vulnerable systems. Apache Parquet is an open-source columnar data storage format optimized…
Salesloft Authentication Token Breach Exposes Corporate Vulnerabilities Recent developments in cybersecurity have raised alarms among businesses utilizing Salesloft, a platform that streamlines customer interactions into actionable leads for Salesforce. A significant breach involving the theft of authentication tokens from Salesloft…
Critical Vulnerability Discovered in Commvault Command Center The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a severe security vulnerability affecting Commvault Command Center to its Known Exploited Vulnerabilities (KEV) catalog. This move comes shortly after the flaw, identified…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently added a significant vulnerability affecting the ZK Framework to its Known Exploited Vulnerabilities (KEV) catalog, citing ongoing indications of active exploitation. This flaw, identified as CVE-2022-36537, carries a CVSS score…
Cyberwarfare / Nation-State Attacks, Email Security & Protection, Fraud Management & Cybercrime No Law Enforcement Information or Personal Data Compromised, Says Austrian Government Akshaya Asokan (asokan_akshaya) • September 1, 2025 The headquarters of Austria’s Ministry of the Interior in Palais…
China is poised for a significant military showcase, marking the 80th anniversary of its victory over Japan in World War II. The event, scheduled for September 3 in Tiananmen Square, will feature a grand military parade that combines historical commemoration…
In a concerning revelation, the Computer Emergency Response Team of Ukraine (CERT-UA) has reported three cyberattacks targeting state administration and critical infrastructure. The objective of these attacks appears to be data theft from sensitive governmental entities. According to CERT-UA, the…
