The Lazarus Group, a prominent North Korean hacking organization, has recently launched a new campaign employing the Windows Update service to execute its malicious payload. This development reflects an ongoing expansion of the group’s utilization of living-off-the-land (LotL) techniques to achieve its objectives. Known by several aliases, including APT38 and…
The U.S. Department of Justice (DoJ) has formally declared the disruption of the BlackCat ransomware operation, providing a decryption tool for over 500 victims affected by the malware. This intervention is seen as a significant step in combating ransomware threats that have plagued businesses across the globe. According to court…
Apple’s Removal of ICE Monitoring Apps Raises Concerns Over Free Speech and Digital Control In a significant move, Apple has removed several monitoring and documentation apps related to Immigration and Customs Enforcement (ICE) from its App Store, drawing widespread attention and debate among legal experts and digital rights advocates. These…
New Malware Exposed as Iranian APT Group Targets Global Networks Cybersecurity agencies from the United States and the United Kingdom have revealed new malware attributed to the Iranian government-sponsored advanced persistent threat (APT) group known as MuddyWater. This malware is reported to facilitate attacks against both government and commercial networks…
A new cyber espionage tool, known as Daxin, has emerged as part of a sustained campaign attributed to threat actors linked to China, targeting governments and critical infrastructure since at least 2013. This sophisticated backdoor has been identified by Broadcom’s Symantec Threat Hunter team, who described it as capable of…
Recent developments have drawn the attention of cybersecurity experts worldwide, as the Five Eyes nations—comprising Australia, Canada, New Zealand, the United Kingdom, and the United States—issued a comprehensive advisory on rising cyber threats linked to Russian state-sponsored actors and criminal syndicates. This advisory underscores the heightened risk posed to critical…
A Hive ransomware incident recently targeted an unspecified organization, leveraging vulnerabilities in Microsoft Exchange Server known as “ProxyShell” to conduct a swift attack that culminated in network encryption within 72 hours of initial compromise. This information was shared by Nadav Ovadia, a security researcher from Varonis, in a detailed post-mortem…
NEWTOWN, Pa., Oct. 1, 2025 /PRNewswire/ — Edelson Lechtzin LLP, a prominent national class action law firm, has initiated an investigation into data privacy violations linked to a breach at Motility Software Solutions, Inc. (“Motility”). The company first detected the security incident around August 19, 2025. Interested parties are encouraged…
Recently, cybersecurity researchers have identified a new Golang-based peer-to-peer (P2P) botnet, named Panchan, that has been actively targeting Linux servers within the education sector since its debut in March 2022. This malware exploits built-in concurrency features to enhance its propagation and deploy malicious modules, specifically by harvesting SSH keys to…
