A variant of the notorious Mirai botnet has been identified exploiting a recently disclosed vulnerability in Four-Faith industrial routers, with operations reportedly commencing in early November 2024. The primary aim of this botnet is to facilitate distributed denial-of-service (DDoS) attacks, significantly disrupting target networks. This particular botnet is characterized by…
A noted advanced persistent threat (APT) group linked to Iran has updated its malware arsenal, introducing a new backdoor known as Marlin. This marks an ongoing espionage campaign that has been active since April 2018. The Slovak cybersecurity firm ESET has attributed these attacks, under the codename “Out to Sea”,…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development, Security Information & Event Management (SIEM) Pete Harteveld Aims to Enhance Security Operations Through Programmatic Strategies Michael Novinson ( MichaelNovinson) • October 10, 2025 Pete Harteveld, CEO, Exabeam (Image: Exabeam) Exabeam, a security operations vendor based in Silicon Valley, has…
Researchers from Fortinet’s FortiGuard Labs have uncovered a troubling development in the world of ransomware: the Chaos ransomware has evolved into a more rapid and aggressive variant known as Chaos-C++. This alarming progression marks a significant shift in its operational strategy since it is reportedly the first iteration not built…
Recent reports indicate a worrying trend among ransomware groups that are increasingly employing remote encryption methods in their cyberattacks. This evolution signifies a notable escalation in the strategies utilized by financially motivated actors seeking to amplify the efficacy of their operations. Mark Loman, the Vice President of Threat Research at…
Key Insights from Recent Data Breach Settlements Two major class action settlements have emerged from data breaches involving third-party administrators (TPAs) and their insurance co-defendants, culminating in nearly $20 million in total payments. The lawsuits originated from large-scale data breaches disclosed in 2023 and 2024, which compromised the personal information…
Critical Security Flaw in Ivanti Products Under Active Exploitation Ivanti has issued a warning regarding a severe security vulnerability affecting its Ivanti Connect Secure, Policy Secure, and ZTA Gateways, which has been subject to active exploitation since mid-December 2024. The vulnerability, identified as CVE-2025-0282, has been assigned a high CVSS…
A recently identified hacking group has been associated with targeted cyber operations against human rights activists, academics, and legal professionals in India. This activity appears aimed at implanting false digital evidence against these individuals. The cybersecurity firm SentinelOne has linked these attacks to a group it monitors under the name…
Attack Surface Management, Security Operations Attackers Access Server Files and Compromise Credentials in Gladinet CentreStack and Triofox Anviksha More (AnvikshaMore) • October 10, 2025 Image: Zakharchuk/Shutterstock Recent research reveals that hackers are exploiting a vulnerability that allows unauthorized access to critical files in file-sharing and remote-access applications, including Gladinet CentreStack…
