Coker spoke to Recorded Future News about his time as National Cyber Director, what he considers his biggest successes and what he would tell his replacement – who is currently going through the...

Introduction: Security at a Tipping Point Security Operations Centers (SOCs) were built for a different era, one defined by perimeter-based thinking, known threats, and manageable alert volumes....

Custom and Border Protection flying powerful Predator B drones over Los Angeles further breaks the seal on federal involvement in civilian matters typically handled by state or local authorities.

Jen Easterly and Ciaran Martin called for a universal, vendor-neutral cyber threat actor naming system

The city government of Thomasville, North Carolina, and a court district in eastern Georgia are responding to recent intrusions into their networks.

Ransomware gangs leveraged a vulnerability to access unpatched SimpleHelp's remote monitoring and management tool to disrupt services in double extortion compromises.

Pentagon rules sharply limit US Marines and National Guard activity in Los Angeles, prohibiting arrests, surveillance, and other customary police work.

Google says an API management issue is behind Thursday's massive Google Cloud outage, which disrupted or brought down its services and many other online platforms. [...]

Paris, France, 13th June 2025, CyberNewsWire

Interpol disrupts major infostealer operation, Fog ransomware abuses pentesting tools, and zero-click AI flaw in MS 365 Copilot exposes data.

Apple has disclosed that a now-patched security flaw present in its Messages app was actively exploited in the wild to target civil society members in sophisticated cyber attacks. The...

Hackers are hijacking expired or deleted Discord invite links to redirect users to malicious sites that deliver remote access trojans and information-stealing malware. [...]

Posted by Google GenAI Security TeamWith the rapid adoption of generative AI, a new wave of threats is emerging across the industry with the aim of manipulating the AI systems themselves. One such...

This is the first forensic evidence that journalists’ devices have been infected with Paragon’s Graphite spyware

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert notifying about ransomware actors abusing unpatched vulnerabilities in SimpleHelp’s Remote Monitoring and Management...

The European Commission announced Thursday it is allocating €145.5 million, or about US$170 million, to help public administrations... The post EU invests €145.5 million to strengthen...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published a cybersecurity advisory warning of ransomware hackers leveraging... The post CISA flags exploitation of SimpleHelp...

Cyfirma researchers this week profiled MISSION2025, a Chinese state-sponsored threat group tied to APT41. Active since at least... The post MISSION2025 cyber campaign expands global targeting of...

Democratic members of the House Homeland Security Committee have asked the U.S. Government Accountability Office (GAO) to review... The post House Democrats call for GAO probe into CISA and NIST...

Understand the mechanics of serverless authentication: three simulated attacks across major CSPs offer effective approaches for application developers. The post Serverless Tokens in the Cloud:...

A CISA advisory urged all software vendors and downstream customers to check if they are impacted by unpatched versions of the SimpleHelp RMM tool

2025-06-06 • Seqrite • Sathwik Ram Prakki, Subhajeet Singha • win.vshell Open article on Malpedia

2025-06-09 • Sentinel LABS • Aleksandar Milenkoski, Tom Hegel • elf.goreshell, elf.nimbo_c2, win.shadowpad Open article on Malpedia

Microsoft is investigating a known issue that triggers Secure Boot errors and prevents Surface Hub v1 devices from starting up. [...]

Researchers have found a flaw in Microsoft 365 Copilot that allows the exfiltration of sensitive corporate data with a simple email

2025-06-10 • Check Point Research • Check Point Research Open article on Malpedia

Check out NIST best practices for adopting a zero trust architecture. Plus, learn how OpenAI disrupted various attempts to abuse ChatGPT. In addition, find out what Tenable webinar attendees said...

Linux Syscall Threat Detection in Splunk with Uncoder AI How It Works The detection logic here is built around monitoring use of the mknod syscall, which is rarely used in legitimate workflows but...

Microsoft is investigating an ongoing incident that is causing users to experience errors with some Microsoft 365 authentication features. [...]

How It Works The Sigma rule shown is designed to detect Notepad opening files with names suggesting password storage, which may indicate unauthorized credential access or suspicious behavior on...