ASEC Blog publishes ” Mobile Security & Malware Issue 1st Week of June, 2025″

ASEC Blog publishes Ransom & Dark Web Issues Week 1, June 2025 Germany’s largest automobile manufacturer listed as a new victim of Stormous ransomware. Dark web carding market BidenCash shut down...

Experts argue that CISOs should avoid product duplication and simplify their language to ensure budget is spent wisely

The Main Intelligence Directorate (GUR) of Ukraine's Ministry of Defense claims it hacked the Russian aerospace and defense company Tupolev, which develops Russia's supersonic strategic bombers. [...]

Introduction Google Threat Intelligence Group (GTIG) is tracking UNC6040, a financially motivated threat cluster that specializes in voice phishing (vishing) campaigns specifically designed to...

Agentic AI systems could threaten security and data privacy, unless organizations test each model and component

Earlier today, law enforcement seized multiple domains of BidenCash, the infamous dark web market for stolen credit cards, personal information, and SSH access. [...]

The parent company of apparel brand The North Face sent data breach notification letters to about 3,000 customer accounts, saying attackers used the technique known as credential stuffing.

A phishing campaign spoofing Booking.com has been observed targeting hospitality sector, using ClickFix to install malware

The attacks on UK retailers are “a wake-up call” for the industry, said River Island’s Information Security Officer

2025-06-03 • K7 Security • Praveen Babu • ps1.vipersoftx Open article on Malpedia

2025-06-03 • VMRay • Albert Zsigovits, VMRay • win.rhadamanthys Open article on Malpedia

The FBI is warning about a new scam where cybercriminals exploit NFT airdrops on the Hedera Hashgraph network to steal crypto from cryptocurrency wallets. [...]

2025-06-03 • ANY.RUN • ANY.RUN • js.beavertail, js.otter_cookie, py.invisibleferret Open article on Malpedia

New research from Honeywell points to sharp and growing ransomware threats against industrial operators and manufacturers. Ransomware attacks... The post New Honeywell 2025 Cyber Threat Report...

Sophos has uncovered a scheme planting malicious code in 130+ GitHub repositories, targeting hackers and gamers

The Acreed malware, which emerged earlier this year, is gaining ground with cybercriminals who otherwise might have used the Lumma infostealer, researchers said.

How It Works This feature of Uncoder AI transforms structured threat intel into Microsoft Defender for Endpoint-compatible KQL detection rules. In this case, it ingests IOCs from CERT-UA#11689,...

How It Works This Uncoder AI feature generates a broad-spectrum KQL detection query for Microsoft Sentinel, based on indicators from CERT-UA#14045 (DarkCrystal RAT). The AI processes a threat...

How It Works This Uncoder AI feature analyzes a complex CERT-UA#1170 threat report describing the LITERNAMAGER malware family and generates a Cortex XSIAM-compatible XQL rule. The AI extracts...

How It Works This feature in Uncoder AI ingests structured IOCs from threat reports — in this case, dozens of malicious domains tied to credential phishing (e.g., fake Google, Microsoft, and...

How It Works 1. IOC Extraction Uncoder AI scans the threat report (left panel) and identifies malicious network infrastructure associated with: HATVIBE and CHERRYSYSPY loaders Suspicious...

Stolen devices are a bigger cause of data loss than stolen credentials or ransomware, according to a new Blancco study

Today, your internet presence is much more than just a website or social media profile, it’s like your…

Hewlett Packard Enterprise (HPE) has issued a new security advisory addressing eight newly discovered vulnerabilities in its StoreOnce data backup and deduplication platform. Among these, the most...

Researchers from Forescout Technologies‘ Vedere Labs analyzed 35,000 solar power devices, including inverters, data loggers, monitors, gateways, and... The post Forescout finds Europe leading in...

TXOne Networks, vendor of cyber-physical systems (CPS) security, announced on Tuesday an expanded new version of its SageOne... The post TXOne enhances SageOne platform to support OT cybersecurity...

Hewlett Packard Enterprise (HPE) has released security updates to address as many as eight vulnerabilities in its StoreOnce data backup and deduplication solution that could result in an...

What comes to your mind when you think of Photoshop? A tool for editing and retouching photos –…

Publishing giant Lee Enterprises is notifying over 39,000 people whose personal information was stolen in a February 2025 ransomware attack. [...]