The Lazarus Group, a prominent North Korean hacking organization, has recently launched a new campaign employing the Windows Update service to execute its malicious payload. This development reflects an ongoing expansion of the group’s utilization of living-off-the-land (LotL) techniques to achieve its objectives. Known by several aliases, including APT38 and…
The cybersecurity landscape is increasingly marked by a staggering disparity in the value of personal information on the dark web. In this context, Electronic Health Records (EHRs) command the highest price, selling for upwards of $1,000 each. This is significantly more than a credit card number, which averages around $5,…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Research Uncovers Vulnerability Allowing Data Exfiltration via Hidden Images Rashmi Ramesh (rashmiramesh_) • October 9, 2025 Image: PJ McDonnell/Shutterstock A recently resolved vulnerability within GitHub Copilot Chat has been identified, which could have permitted threat actors to extract source code…
Ukrainian National Arrested for Sophisticated Cryptojacking Scheme A 29-year-old individual from Ukraine has been apprehended for orchestrating a comprehensive cryptojacking operation, which has reportedly yielded over $2 million (€1.8 million) in illicit earnings. Identified as the key architect behind the scheme, the suspect was arrested in Mykolaiv on January 9…
In recent weeks, the Chinese state-sponsored hacking group known as Override Panda has made headlines again, launching a sophisticated phishing campaign aimed at acquiring sensitive information. This resurgence focuses on utilizing spear-phishing tactics to compromise targeted entities. According to a report by Cluster25, this threat actor leveraged a spear-phishing email…
A significant security vulnerability in the Travis CI API has put the user tokens of numerous developers at risk, potentially exposing them to severe cyber threats. This flaw enables malicious actors to compromise cloud infrastructures, perform unauthorized code modifications, and execute supply chain attacks. Recent research from cloud security experts…
Rising Threat of Secrets Sprawl: Key Findings from GitGuardian and CyberArk Research Recent research by GitGuardian and CyberArk highlights a concerning trend in the cybersecurity landscape, with 79% of IT decision-makers reporting experiences with secrets leaks—an increase from 75% the year prior. The data is alarming, revealing that over 12.7…
A recent cybersecurity campaign has exploited ostensibly harmless Android dropper apps available on the Google Play Store to infiltrate users’ devices with banking malware. Dubbed DawDropper by security analysts at Trend Micro, this malicious operation involved 17 dropper applications masquerading as productivity and utility tools, including document scanners, VPN services,…
Recent investigations have revealed a sophisticated malware campaign deploying a remote access trojan (RAT) called AsyncRAT, utilizing Python payloads and TryCloudflare tunnels for distribution. Forcepoint X-Labs researcher Jyotika Singh indicated that AsyncRAT capitalizes on the async/await programming model, allowing attackers to covertly access and manipulate infected systems, exfiltrate data, and…
