Threat Management

North Korea digital technology flag cyber background. North Korean banner cyberattack and espionage concept illustration.

AI/ML

North Korea launches hacking hub focused on artificial intelligence

"Research Center 227" reportedly focused on using AI for cyberattacks.

iPhone 13 Pro with notification software update iOS 15.5 on the screen close up, new operating system 2022 on iPhone apple devices for download updates

Network Security

Rooted, jailbroken mobile devices pose security risk to organizations

One out of every 1,000 devices it encounters have either been rooted (Android) or jailbroken (iOS).

Threat Intelligence

ClearFake exploits Web3 capabilities for malware campaign

The threat actor retrieves resources and payloads from smart contracts on the Binance Smart Chain.

Security Operations

New research reveals flaws in security team performance metrics

IDC's survey of 900 security leaders reveals widespread use of volume-based metrics for team performance. How do we shift from measuring activity to measuring true impact?

AI/ML

How AI coding assistants could be compromised via rules file

Researchers showed how GitHub Copilot and Cursor could be manipulated with hidden Unicode.

Ransomware

Akira ransomware decryption method uses GPUs to brute force keys

Source code for the decryption method was published by programmer Yohanes Nugroho.

Homepage of Apache website on the display of PC

Vulnerability Management

Apache Tomcat flaw actively exploited; could allow ‘devastating’ RCE

Remote code execution may be achieved on vulnerable servers with a single PUT API request.

Businessman holding mobile phone which on the top of phone has upload and download cloud space computer.Technology and data information transfer concept.

Cloud Security

How to plan your cloud migration with security in mind

To protect your cloud-based assets, your organization must consider security and compliance when planning your cloud migration journey.

Application security

Android spyware ‘KoSpy’ spread by suspected North Korean APT

Malicious apps previously in the Google Play Store enabled theft of messages, files and more.

Phishing

95% of data breaches involve human error, report reveals

Meanwhile, employees tend to be overconfident in their ability to detect scams.

Perspectives

Proactive law enforcement takedowns in 2024 reshaped the cybercrime ecosystem

Expect more offensive cyber ops once Trump takes office

Election 2024: Countdown to chaos?

Briefs

Attacks involving ServiceNow vulnerabilities escalate

Thai police warn scam centers on Myanmar border remain active despite crackdown

Meta: FreeType flaw affecting multiple Linux distributions under active exploitation