Apple has recently announced a significant increase in its bug bounty program, elevating the maximum payout to $2 million for specific software exploit chains that could be exploited by spyware. This announcement was made by Ivan Krstić, Apple’s vice president of security engineering and architecture, during the Hexacon offensive security…
Cybersecurity experts have recently illuminated the mechanisms of a global ransomware operation attributed to Mikhail Pavlovich Matveev, a Russian national indicted by U.S. authorities for his involvement in a multitude of cyberattacks worldwide. Matveev resides in St. Petersburg and utilizes several aliases, including Wazawaka and Boriselcin, playing a pivotal role…
Widespread Compromise of SonicWall SSL VPN Devices Raises Alarm in Cybersecurity Community On October 11, 2025, cybersecurity firm Huntress disclosed a significant breach involving SonicWall SSL VPN devices that has resulted in extensive unauthorized access to numerous customer environments. The incident has drawn considerable attention due to the rapid and…
On Tuesday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced the addition of three vulnerabilities affecting Mitel MiCollab and Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) catalog. This action was taken in response to evidence indicating that these flaws are actively being exploited. The vulnerabilities identified include…
In an alarming series of spear-phishing attacks between October and November 2021, the Russia-linked advanced persistent threat group APT29 targeted European diplomatic missions and Ministries of Foreign Affairs. This activity showcases a troubling trend of cyberespionage aimed at sensitive political partners. ESET’s T3 2021 Threat Report, provided to The Hacker…
Critical Infrastructure Security, Government, Industry Specific US Cyber Defense Agency Faces Crisis Amid Shutdown and Resource Shortfalls Chris Riotta (@chrisriotta) • October 10, 2025 The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is currently grappling with significant challenges that threaten its operational capabilities. Political pressures, notably exacerbated by ongoing tensions…
Recent research has unveiled that North Korean scammers are attempting to deceive U.S. companies into hiring them for architectural design roles, utilizing fabricated profiles, resumes, and Social Security numbers to masquerade as legitimate professionals. This scheme aligns with long-standing efforts by the hermit kingdom to misappropriate billions from organizations worldwide,…
The U.S. Department of Justice (DoJ) has formally declared the disruption of the BlackCat ransomware operation, providing a decryption tool for over 500 victims affected by the malware. This intervention is seen as a significant step in combating ransomware threats that have plagued businesses across the globe. According to court…
TLDR CoinGlass experienced a significant proxy attack that disrupted its global service. No data breaches have been reported as a result of the incident. The company’s technical team successfully restored services and is currently investigating the attack. This incident underscores vulnerabilities within the cryptocurrency sector’s reliance on cloud infrastructure. On…
