cybersecurity threats
-
Russian-Aligned Group TAG-110 Targets Tajik Institutions in Espionage Campaign
Recorded Future’s Insikt Group has reported that Russian-aligned threat actor TAG-110 is intensifying its espionage campaign against Tajik institutions, leveraging phishing tactics and trojanized documents to further Russian interests in Central Asia.
-
CISA Reports Cyber Threats Targeting Commvault’s Azure SaaS Applications
CISA has issued a warning about cyber threat activity targeting Commvault’s Azure-hosted applications, potentially compromising client secrets and customer data. The agency has recommended preventative measures to safeguard against such attacks.
-
Security Flaw in GitLab’s AI Assistant Exposes Source Code to Attackers
A significant vulnerability in GitLab’s AI coding assistant, Duo, has been discovered, allowing potential theft of source code and injection of malicious instructions, prompting urgent security measures from GitLab.
-
Critical Vulnerability in Windows Server 2025 Exposes Active Directory to Domain Compromise
A critical vulnerability in Windows Server 2025 allows attackers to exploit Active Directory security features, posing risks of full domain compromise. The vulnerability, dubbed the ‘BadSuccessor’ attack, enables unauthorized users to inherit privileges from legitimate accounts without detection, prompting urgent patch development from Microsoft.
-
Hackers Exploit Trimble Cityworks Vulnerability to Breach U.S. Local Governments
Chinese-speaking hackers have breached multiple U.S. local governments by exploiting a patched Trimble Cityworks vulnerability. The incident, attributed to the group UAT-6382, emphasizes the critical need for robust cybersecurity measures.
-
Russian Cyberespionage Targets Aid Organizations Supporting Ukraine
A state-sponsored cyberespionage campaign attributed to the Russian group APT28 is targeting aid organizations linked to Ukraine, employing a variety of hacking techniques to disrupt humanitarian efforts and track aid shipments.
-
Global Authorities Disrupt Lumma Stealer Malware Operation
A coordinated effort by global authorities and tech companies has disrupted the Lumma Stealer malware operation, impacting its infrastructure and threatening its reach in the cybercrime market.
-
EU Imposes Sanctions on Stark Industries for Cyberactivity Facilitation
The European Union has imposed sanctions on Stark Industries, a web-hosting provider, and its executives for enabling cyberattacks and destabilizing activities that support Russian foreign policy, highlighting ongoing concerns regarding information manipulation and digital warfare.
-
Critical Vulnerability Discovered in Windows Server 2025 Threatens Active Directory Security
A recently discovered vulnerability in Windows Server 2025 allows attackers to escalate privileges within Active Directory, posing serious security risks until Microsoft releases a patch. Organizations are urged to take immediate precautions.
-
SK Telecom Confirms Massive Malware Breach Impacting Millions of Subscribers
SK Telecom has confirmed a substantial cybersecurity breach affecting the USIM data of around 27 million subscribers, with malware traces dating back to 2022. The company is taking extensive measures to secure its network, including offering free SIM replacements for affected customers.
