The Pakistan-based cyber threat group known as SideCopy has recently exploited a critical vulnerability in WinRAR to conduct targeted attacks against Indian governmental institutions, deploying various remote access trojans (RATs) such as AllaKore RAT, Ares RAT, and DRat. This strategy aligns with SideCopy’s longstanding focus on espionage against entities in…
As Japan prepares for the 2020 Summer Olympics in Tokyo, concerns are escalating regarding potential sophisticated cyberattacks from state-sponsored hackers. Microsoft has issued a warning about a recent surge in targeted attacks attributed to a group of Russian state-sponsored hackers, known as Strontium, or more widely recognized as Fancy Bear…
Recent years have witnessed an alarming surge in data breaches, with reports surfacing almost weekly about organizations falling victim to cyberattacks that expose millions of user records. Despite the pervasive nature of these incidents, many businesses continue to underestimate the critical importance of data protection, leaving sensitive information vulnerable to…
Cloud Security, Security Operations, Video AI Adoption Elevating Hypervisors as Targets, According to Google Cloud’s Jamie Collier Akshaya Asokan (asokan_akshaya) • December 29, 2025 Jamie Collier, Lead Threat Intelligence Advisor for EMEA, Google Cloud Recent insights from Jamie Collier, Google Cloud’s lead threat intelligence advisor for the EMEA region, reveal…
KT Corp., a prominent South Korean telecommunications company, has announced it will forgo penalties associated with contract cancellations following a significant data breach. This decision, communicated by the Yonhap News Agency, aims to alleviate concerns for affected customers amidst rising anxiety over cybersecurity in both consumer and business sectors. The…
On November 8, 2023, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) formally recognized a critical vulnerability in the Service Location Protocol (SLP) by adding it to its Known Exploited Vulnerabilities (KEV) catalog. This entry highlights the agency’s concerns regarding active exploitations of the flaw, which has been assigned the…
WhatsApp Files Lawsuit Against NSO Group Over User Exploitation In a landmark legal move, WhatsApp, a leading encrypted messaging service, has initiated a lawsuit against the Israeli technology firm NSO Group, alleging that the company has engaged in malicious cyber activities targeting its users. This case represents a significant step…
The FBI has recently detained a Chinese national for allegedly orchestrating the distribution of malware implicated in the 2015 Office of Personnel Management (OPM) breach. This breach, one of the largest in U.S. history, resulted in the compromise of personal information belonging to over 25 million federal employees, including 5.6…
3rd Party Risk Management , Governance & Risk Management Aikido Researcher Suggests New Variant Is Likely in Testing Phase Akshaya Asokan (asokan_akshaya) • December 29, 2025 Image: Shutterstock/ISMG Researchers from Aikido have uncovered a potentially novel variant of the Shai Hulud malware, which has been responsible for a series of…
