Автор: Nate Nelson, Contributing Writer

The innocuously named Russian-sponsored cyber threat actor has combined critical and serious vulnerabilities in Windows and Firefox products in a zero-click code execution exploit.

The APT, aka Earth Estries, is one of China’s most effective threat actors, performing espionage for sometimes years on end against telcos, ISPs, and governments before being detected.

Attackers are betting that the hype around generative AI (GenAI) is attracting less technical, less cautious developers who might be more inclined to download an open source Python code package for free access, without vetting it or thinking twice.

In a sign of the times, a backdoor malware whose ancestors date back to 2005 has morphed to target Linux systems.

In US Senate testimony, a CrowdStrike exec explained how this advanced persistent threat penetrated telcos in Asia and Africa, gathering SMS messages, unique identifiers, and other metadata along the way.

Using a malicious Chrome extension, researchers showed how an attacker could use a now-fixed bug to inject custom code into a victim’s Opera browser to exploit special and powerful APIs, used by developers and typically saved for only the most trusted …

LLMs tend to miss the forest for the trees, understanding specific instructions but not their broader context. Bad actors can take advantage of this myopia to get them to do malicious things, with a new prompt-injection technique.

Kremlin intelligence carried out a wide-scale phishing campaign in contrast to its usual, more targeted operations.

An attacker compromised one of Fortinet’s most sensitive products and mopped up all kinds of reconnaissance data helpful for future mass device attacks.

The Russian-language malware primarily enlists computers to mine Monero, but theoretically it can do worse.