Network SecurityNorth Korean IT worker scam linked to Chinese front companiesSentinelLabs reveals information on four previously unreported Chinese front companies taken down by the U.S. government Oct. 10.
RansomwareRussian women stepping up for cybercrime outfitsWomen are increasingly taking on top roles within Russian-speaking threat actor groups.
Data SecurityFBI and CISA warn of continued cyberattacks on US telecomsChina’s campaign against U.S. telecoms has been ongoing for years.
AI/MLGoogle’s AI-powered fuzzing tool discovers 26 new vulnerabilitiesLLM capabilities boosted OSS-Fuzz’s coverage and helped find a 20-year-old flaw in OpenSSL.
Cybersecurity daily newsRed red team team: Threat actors hire pentesters to test out ransomware effectivenessThreat actors are hiring freelance pentesters to improve the effectiveness of their ransomware attacks
RansomwareUpstart SafePay ransomware group uses LockBit builder, claims 22 victimsHuntress researchers describe two SafePay ransomware incidents resulting in file encryption and exfiltration.
MalwareNorth Korea’s Lazarus observed testing new macOS trojan in the wildGroup-IB says the "RustyAttr" trojan could potentially be used in future attacks once the attackers make it more robust.
MalwareIranian threat group targets aerospace workers with fake job luresResearchers say the Iranian threat actors impersonated the North Koreans to hide their activities.
Government RegulationsLegal protections for security researchers sought in new German draft lawA proposed amendment would exclude legitimate security research from the definition of data espionage.
What security pros can learn from the bad information spread during this year’s election cycleJim RichbergOctober 8, 2024
Seven tips that offer short-term and long-term fixes following the CrowdStrike outageCallie Guenther July 19, 2024
