China’s Ministry of State Security’s Crimson Palace operation targets government organizations in Southeast Asia through three threat activity clusters, using custom-developed malware and open-source tools to evade detection and exfiltrate valuable data.
Microsoft patched 79 vulnerabilities in Windows, including critical vulnerabilities and zero-day bugs actively exploited in the wild.
Shadow apps present significant security risks to organizations due to their unauthorized nature and lack of essential protections, potentially leading to data breaches, compliance violations, and increased attack surfaces.
Cybercriminal group CosmicBeetle, affiliated with RansomHub, deploys new ScRansom strain using brute-force attacks and exploits in Europe, Asia, Africa, and South America, posing challenges for SMB victims.
Highline Public Schools in Washington State will remain closed for at least three days following a suspected cyberattack, with ongoing efforts to restore systems and ensure student safety.
Mustang Panda, a China-linked APT group, uses Visual Studio Code to launch discreet attacks on government entities, religious organizations, and NGOs in Europe and Asia since 2012.
