cybersecurity threats
-
Russian APT Gamaredon Intensifies Phishing Campaigns Against Ukraine
Gamaredon, a Russia-aligned APT, has intensified its spear-phishing attacks on Ukrainian government institutions, revealing a significant increase in sophistication and employing new stealth capabilities in its operations.
-
North Korean Hackers Target Web3 and Crypto Businesses with Nim-based Malware
North Korean hackers are increasingly targeting Web3 and cryptocurrency sectors with sophisticated Nim-based malware, employing advanced tactics including social engineering and remote process injection techniques to extract sensitive information from compromised systems.
-
Cisco Addresses Critical Security Vulnerability in Unified Communications Manager
Cisco has released updates to mitigate a serious security vulnerability in its Unified Communications Manager that allowed for unauthorized remote access through a hardcoded backdoor account.
-
Verizon and T-Mobile Deny Data Breaches amid Claims of Stolen User Records
Verizon and T-Mobile US deny recent data breaches despite claims by a hacker selling sensitive customer information. The allegations involve millions of personal records being offered online, prompting both companies to assure customers that the data is not current. However, users remain cautious due to each company’s history with data security.
-
U.S. Sanctions Russian Bulletproof Hosting Provider Amid Cybercrime Crackdown
The U.S. Treasury has imposed sanctions on Russian bulletproof hosting provider Aeza Group for its facilitation of cybercrime activities, marking a significant step in the government’s ongoing efforts to combat ransomware and related threats.
-
Esse Health Reports Data Breach Affecting Over 263,000 Patients
Esse Health has reported a data breach impacting over 263,000 patients in a cyberattack that began on April 21. The healthcare provider reassures patients that their information is being protected and offers free identity monitoring services.
-
Google Addresses Critical Zero-Day Vulnerability in Chrome Browser
Google has released security updates to patch a critical zero-day vulnerability in its Chrome browser, tracked as CVE-2025-6554, which has potentially been exploited in the wild. Users are urged to update their browsers to safeguard against possible attacks.
-
U.S. Disrupts North Korean IT Worker Scams Targeting American Firms
The U.S. Department of Justice has successfully disrupted North Korean scams involving fake IT workers who infiltrated over 100 American companies, embezzling significant amounts of money and stealing sensitive data intended for Pyongyang.
-
Security Researchers Warn of Bluetooth Vulnerabilities in Popular Headphones
Security researchers have identified vulnerabilities in Airoha’s Bluetooth products, putting a wide range of earbuds and headphones at risk of unauthorized access and control. Airoha has provided fixes, but manufacturers must implement updates to secure their devices.
-
Swiss Government Confirms Data Theft in Ransomware Attack on Radix
The Swiss government has confirmed that a ransomware attack on the nonprofit organization Radix has compromised sensitive data from various federal offices, with the leaked information now available on the dark web.
