Ionut Arghire

Weaver Ant, a cyberespionage-focused APT operating out of China, is targeting telecom providers for persistent access.

Authorities in seven African countries arrested 300 suspects in an international crackdown on cybercriminal networks targeting businesses.

A Russian exploit acquisition firm is offering up to $4 million for a full-chain exploit targeting messaging service Telegram.

The US Department of the Treasury has removed sanctions against the fully decentralized cryptocurrency mixer service Tornado Cash.

The Medusa ransomware relies on a malicious Windows driver to disable the security tools running on the infected systems.

New versions of the Albabat ransomware target Windows, Linux, and macOS, and retrieve configuration files from GitHub.

The Cloak ransomware group has claimed responsibility for a February cyberattack on Virginia Attorney General’s Office.

Cato Networks discovers a new LLM jailbreak technique that relies on creating a fictional world to bypass a model’s security controls.

The FishMonger APT group, a subdivision of Chinese cybersecurity firm I-Soon, compromised seven organizations in a 2022 campaign.

The Hellcat ransomware group claims to have stolen tens of gigabytes of data from Ascom and Jaguar Land Rover.

Real-time event and risk detection firm Dataminr has raised $85 million from NightDragon and HSBC to accelerate AI development.

CISA has added an absolute path traversal bug in Nakivo Backup and Replication to its Known Exploited Vulnerabilities list.

Veeam has released patches for a critical-severity remote code execution vulnerability in Backup & Replication.

Pennsylvania State Education Association says the personal information of over 500,000 individuals was stolen in a data breach.

Over 300 malicious applications displaying intrusive full-screen interstitial video ads amassed more than 60 million downloads on Google Play.

Infosys McCamish System has agreed to pay $17.5 million to settle six class action lawsuits filed over a 2023 data breach.

Chinese hacking group MirrorFace has targeted a Central European diplomatic institute with the Anel backdoor and AsyncRAT.

A long-running campaign phishing for credentials through scareware recently switched to targeting macOS users.

Google has integrated OSV-SCALIBR features into OSV-Scanner, its free vulnerability scanner for open source developers.

The personal information of 22,000 Western Alliance Bank customers was stolen in a data breach linked to Cl0p’s hacking of the Cleo file transfer...