Widespread Compromise of SonicWall SSL VPN Devices Raises Alarm in Cybersecurity Community On October 11, 2025, cybersecurity firm Huntress disclosed a significant breach involving SonicWall SSL VPN devices that has resulted in extensive unauthorized access to numerous customer environments. The incident has drawn considerable attention due to the rapid and…
On Tuesday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced the addition of three vulnerabilities affecting Mitel MiCollab and Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) catalog. This action was taken in response to evidence indicating that these flaws are actively being exploited. The vulnerabilities identified include…
In an alarming series of spear-phishing attacks between October and November 2021, the Russia-linked advanced persistent threat group APT29 targeted European diplomatic missions and Ministries of Foreign Affairs. This activity showcases a troubling trend of cyberespionage aimed at sensitive political partners. ESET’s T3 2021 Threat Report, provided to The Hacker…
Critical Infrastructure Security, Government, Industry Specific US Cyber Defense Agency Faces Crisis Amid Shutdown and Resource Shortfalls Chris Riotta (@chrisriotta) • October 10, 2025 The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is currently grappling with significant challenges that threaten its operational capabilities. Political pressures, notably exacerbated by ongoing tensions…
Recent research has unveiled that North Korean scammers are attempting to deceive U.S. companies into hiring them for architectural design roles, utilizing fabricated profiles, resumes, and Social Security numbers to masquerade as legitimate professionals. This scheme aligns with long-standing efforts by the hermit kingdom to misappropriate billions from organizations worldwide,…
The U.S. Department of Justice (DoJ) has formally declared the disruption of the BlackCat ransomware operation, providing a decryption tool for over 500 victims affected by the malware. This intervention is seen as a significant step in combating ransomware threats that have plagued businesses across the globe. According to court…
TLDR CoinGlass experienced a significant proxy attack that disrupted its global service. No data breaches have been reported as a result of the incident. The company’s technical team successfully restored services and is currently investigating the attack. This incident underscores vulnerabilities within the cryptocurrency sector’s reliance on cloud infrastructure. On…
A variant of the notorious Mirai botnet has been identified exploiting a recently disclosed vulnerability in Four-Faith industrial routers, with operations reportedly commencing in early November 2024. The primary aim of this botnet is to facilitate distributed denial-of-service (DDoS) attacks, significantly disrupting target networks. This particular botnet is characterized by…
A noted advanced persistent threat (APT) group linked to Iran has updated its malware arsenal, introducing a new backdoor known as Marlin. This marks an ongoing espionage campaign that has been active since April 2018. The Slovak cybersecurity firm ESET has attributed these attacks, under the codename “Out to Sea”,…
