China’s APT41 Targets Global Logistics, Utilities Companies
According to Mandiant, among the many cyber espionage tools the threat actor is using is a sophisticated new dropper called DustTrap.
Under-Resourced Maintainers Pose Risk to Africa’s Open Source Push
Many nations see open source software as a great equalizer, giving the Global South the tools necessary for sustainable development. But recent supply chain attacks highlight the need for security.
DHS Inspector General: Coast Guard Shortcomings Hinder US Maritime Security
Private sector organizations are "hesitant" to seek guidance from the Coast Guard, which isn’t sufficiently equipped to help them yet.
Notorious Chinese Hacker Gang GhostEmperor Re-Emerges After 2 Years
After an extended period underground, the Chinese hackers have added a more sophisticated infection chain and additional EDR evasion techniques.
Tech Giants Agree to Standardize AI Security
The Coalition for Secure AI is a consortium of influential AI companies aiming to develop tools to secure AI applications and set up an ecosystem for sharing best practices.
Buggy CrowdStrike EDR Update Crashes Windows Systems Worldwide
Though the cybersecurity vendor has since reverted the update, chaos continues as companies continue to struggle to get back up and running.
Sizable Chunk of SEC Charges Against SolarWinds Tossed Out of Court
Judge dismisses claims against SolarWinds for actions taken after its systems had been breached, but allows the case to proceed for alleged misstatements prior to the incident.
Threat Actors Ramp Up Use of Encoded URLs to Bypass Secure Email
The tactic is not new, but there has been a steady increase in its use as of this spring.
Iranian Cyber Threat Group Drops New Backdoor, ‘BugSleep’
The group — which has targeted Israel, Saudi Arabia, and other nations — often uses spear phishing and legitimate remote management tools but is developing a brand-new homegrown toolset.
Security End-Run: ‘AuKill’ Shuts Down Windows-Reliant EDR Processes
Russian threat actor FIN17 has shifted gears multiple times in recent years, focusing now on helping ransomware groups be even more covertly effective.









