A newly identified threat actor, designated as UAT-5918, has reportedly targeted critical infrastructure in Taiwan since at least 2023. This group is suspected of aiming to establish long-term access to gather sensitive information, employing various tactics such as web shells and open-source tools for post-compromise activities, according to research by…
More Cybersecurity Firms Targeted in Salesforce-Salesloft Drift Breach In a significant cybersecurity incident, a number of companies, particularly those in the cybersecurity sector, have experienced breaches linked to the Salesforce and Salesloft platforms. This alarming development highlights ongoing vulnerabilities that can have profound implications for data security across industries. The…
Recent intelligence reports indicate that a targeted cyber campaign has been orchestrated by the North Korean state-sponsored threat actor, known as Kimsuky, which exploits a patched vulnerability in Microsoft Remote Desktop Services to establish initial access into victim systems. The AhnLab Security Intelligence Center (ASEC) has identified this malicious activity…
Cyber Espionage Campaign Targets Telecom Providers in the Middle East Telecommunication service providers in the Middle East are currently facing a sophisticated cyber espionage campaign attributed to an undocumented threat actor, identified as WIP26, by cybersecurity firms SentinelOne and QGroup. This operation appears focused on intelligence gathering, leveraging advanced techniques…
HIPAA/HITECH, Standards, Regulations & Compliance U.S. Government Intensifies Enforcement of 21st Century Cures Act Regulations; Fines May Reach $1 Million Marianne Kolbasuk McGee (HealthInfoSec) • September 4, 2025 The U.S. Department of Health and Human Services has announced a ramp-up in enforcement of information blocking regulations under the 21st Century…
Cloudflare Admits to Security Oversight in TLS Certificate Management On Thursday, Cloudflare officially acknowledged a series of failures concerning its handling of TLS certificates. The company stated that it encountered three primary issues: initially, the mismanagement of IP certificates for 1.1.1.1, followed by inadequate filtering of certificate issuance alerts, and…
The cybersecurity landscape has recently been shaken by the launch of a ransomware-as-a-service (RaaS) operation named VanHelsing, which has already targeted three victims since its inception on March 7, 2025. The ransoms demanded by VanHelsing have reached staggering amounts, totaling as high as $500,000. This model facilitates participation from a…
Cybersecurity Update: Transparency Promised Amid Ongoing Cyber Investigation In the latest developments concerning cybersecurity threats, Nevada officials have committed to enhancing transparency regarding a significant cyber attack that has drawn considerable attention. The incident, which remains under investigation, has raised concerns among business owners and cybersecurity professionals alike, as details…
A newly discovered variant of the infamous Mirai botnet has emerged, exploiting multiple security vulnerabilities to spread across Linux and Internet of Things (IoT) devices. Identified in the latter half of 2022, this variant has been labeled V3G4 by researchers at Palo Alto Networks’ Unit 42. Their investigation has revealed…
