On November 12, 2024, Microsoft disclosed that two significant security vulnerabilities affecting Windows NT LAN Manager (NTLM) and Task Scheduler have been actively exploited in the wild. These vulnerabilities were part of the November Patch Tuesday update, which addressed a total of 90 security flaws across Microsoft products. Among the…
Recent findings from cybersecurity researchers have unveiled a targeted campaign likely aimed at entities in Southeast Asia utilizing a novel form of Linux malware, identified as “FontOnLake.” This malware is designed to facilitate remote access for its operators, gather credentials, and serve as a proxy server. The cybersecurity firm ESET,…
Sensitive Data of High-Level Security Clearance Holders Exposed Online Recent research has uncovered a significant breach involving the sensitive personal information of over 450 individuals holding “top secret” security clearances with the U.S. government. This alarming revelation emerged from a database associated with applicants for roles within the Democratic Party…
On December 16, 2022, the DevOps platform CircleCI fell victim to a sophisticated cyberattack that compromised an employee’s laptop. Unidentified threat actors utilized malware to gain access to the employee’s two-factor authentication credentials and subsequently infiltrated CircleCI’s systems. The malware was notably able to bypass the company’s antivirus defenses, underscoring…
Agentic AI AI-Powered Threats Require AI-Driven Defense Sarah Banks • October 17, 2025 Artificial Intelligence has emerged as a significant force in the cybersecurity arena, enhancing the capabilities of defenders while simultaneously equipping attackers with unprecedented tools. Malicious actors are increasingly utilizing agentic AI to execute sophisticated, autonomous attacks…
Surge in Cyberattacks in the Philippines Driven by Deepfakes and Data Leaks Recent reports indicate a significant rise in cyberattacks within the Philippines, primarily fueled by advanced tactics such as deepfakes and extensive data leaks. This alarming trend has raised substantial concern among business owners and cybersecurity professionals, who must…
Recent security audits of the OvrC cloud platform have revealed a series of vulnerabilities—specifically ten—that could enable attackers to execute code remotely on devices linked to this network. These vulnerabilities, if exploited, could allow unauthorized individuals to commandeer devices including smart power supplies, surveillance cameras, routers, and home automation systems.…
A financially motivated threat group, identified as FIN12, has been linked to a series of RYUK ransomware incidents since October 2018. This organization demonstrates significant collaboration with TrickBot-affiliated actors while utilizing publicly accessible tools like Cobalt Strike Beacon payloads to penetrate victim networks. Cybersecurity firm Mandiant has attributed these security…
Mailchimp, a prominent email marketing and newsletter service provider based in the U.S., has announced a significant security breach resulting from a sophisticated social engineering attack. This incident has compromised the accounts of 133 customers, raising concerns about the vulnerabilities faced by organizations in the digital landscape. According to Mailchimp,…
