Posts by Spartech Software

Next Level Finance Partners, LLC, doing business as Century Support Services, has disclosed a significant data security incident that has compromised sensitive personal information belonging to more than 160,000 individuals. The Pennsylvania-based debt settlement company filed notice of the breach with the Maine Attorney General’s Office, marking the formal public disclosure of the event.

Originally developed as a legitimate remote administration tool, AsyncRAT has become a favorite foundation for cybercriminals due to its flexible architecture, ease of modification, and powerful functionality. As threat actors continue to build upon and customize the tool, the cybersecurity landscape faces a growing risk from increasingly sophisticated and evasive malware variants.

Security researchers at Ontinue have uncovered a sophisticated phishing campaign that leverages Scalable Vector Graphics (SVG) files to bypass conventional email security mechanisms. This emerging technique embeds obfuscated JavaScript code within SVG files to initiate malicious redirects—without requiring attachments, downloads, or user interaction beyond previewing the file.

In a significant move to bolster national cybersecurity, the UK’s National Cyber Security Centre (NCSC) has announced the launch of the Vulnerability Research Initiative (VRI) — a new program designed to deepen collaboration with external cybersecurity researchers. The initiative aims to enhance the discovery, analysis, and mitigation of software and hardware vulnerabilities that pose threats to the UK's infrastructure, government, businesses, and citizens.

Cybersecurity and Infrastructure Security Agency (CISA) issued six new advisories concerning Industrial Control Systems (ICS). These advisories address critical vulnerabilities and offer mitigation guidance for affected vendors and systems. Below is an overview of the advisories and their key points: