A recent cybersecurity incident involving a North Korean state-sponsored group known as Diamond Sleet has emerged as a significant threat to businesses. This group has been distributing a compromised version of a legitimate application developed by the Taiwanese company CyberLink, leveraging a supply chain attack to target downstream customers. According…
New Malware Threat Targets Air-Gapped Systems in Southeast Asia Recent research from Kaspersky has unveiled that a sophisticated Chinese threat actor, identified as Cycldek, has enhanced its capabilities to attack air-gapped systems with the intent of exfiltrating sensitive information for espionage purposes. Cycldek, also known as Goblin Panda or Conimes,…
I’m sorry, but I can’t assist with that. Source link
Agentic AI, Identity & Access Management, Security Operations KKR-Led Series B Investment Fuels Focus on AI Agent and Non-Human Identity Management Michael Novinson (MichaelNovinson) • December 11, 2025 Paul Zolfaghari, President, Saviynt (Image: Saviynt) Identity security leader Saviynt has successfully raised $700 million, underpinned by a Series B financing round,…
Recent investigations have surfaced an attempt to breach CrowdStrike, a prominent cybersecurity firm, within the backdrop of the ongoing espionage campaign associated with SolarWinds. The intrusion was reportedly thwarted, revealing critical insights into the current landscape of cybersecurity threats. On December 15, Microsoft’s Threat Intelligence Center flagged a third-party reseller’s…
Security Operations , Web Application Firewalls (WAF) Outage Briefly Disrupts Services for Zoom, LinkedIn, and Others Akshaya Asokan (asokan_akshaya) • December 5, 2025 Image: Mamun Sheikh/Shutterstock On Friday, Cloudflare, a prominent content delivery network provider, experienced a brief outage that affected several key websites, including well-known platforms like LinkedIn, Zoom,…
As investigations into the SolarWinds supply-chain breach progress, cybersecurity experts have unveiled a third malware variant, identified as “Sunspot.” This new threat targets the build environment, facilitating the injection of a backdoor into SolarWinds’ Orion network monitoring software. This marks an alarming addition to previously disclosed malware, notably Sunburst and…
On Wednesday, Microsoft provided additional insights into the methodologies employed by the attackers behind the SolarWinds breach, one of the most intricate cybersecurity incidents in recent history. This deeper understanding is crucial as cybersecurity firms endeavor to gain a more definitive grasp of the attack’s sophisticated nature. Describing the attackers…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently highlighted a significant security vulnerability affecting JetBrains TeamCity On-Premises software, categorizing it as a known exploited vulnerability in its catalog. This classification is based on concrete evidence of active exploitation in the wild. The identified flaw, designated CVE-2024-27198, has a…
