The hacking group Slow Pisces, linked to North Korea, is exploiting social engineering tactics on LinkedIn to steal sensitive data from cryptocurrency developers by posing as recruiters and distributing malicious code.
UK financial services firms are increasingly focusing on compliance with cybersecurity regulations, driven by complex cyber risks and the upcoming implementation of stringent frameworks like DORA and new FCA rules, while facing external threats and a skills gap in cybersecurity expertise.
A comprehensive security service is essential for safeguarding websites from various cyber attacks, including malware, phishing, and DDoS attacks, by implementing strong passwords, keeping software updated, and utilizing HTTPS.
A high-severity authentication bypass vulnerability, tracked as CVE-2025-3102, has been found in the OttoKit plugin for WordPress, allowing unauthorized users to create administrative accounts and potentially take over affected websites.
The CAB Forum, supported by major industry players like Apple and Google, has announced a significant reduction in the validity period for publicly trusted SSL/TLS certificates, decreasing from 398 days to 47 days by March 15, 2029, to enhance online security and certificate management.
North Korean hackers, operating under government direction, are infiltrating major corporations by posing as legitimate remote workers, primarily targeting the tech sector and engaging in financial fraud, intellectual property theft, and extortion campaigns.
