The new China-based Storm-2603 group is deploying Warlock ransomware on Microsoft SharePoint servers.
Posted inCybersecurity News

The new China-based Storm-2603 group is deploying Warlock ransomware on Microsoft SharePoint servers.

A sophisticated cyber threat actor known as Storm-2603 has been identified exploiting critical vulnerabilities in Microsoft SharePoint to deploy Warlock ransomware on unpatched enterprise systems. According to Microsoft’s recent security advisory, this group, believed to be China-based, is leveraging unpatched flaws in on-premises SharePoint servers to gain unauthorized access, establish persistence, and spread ransomware across targeted networks.
FBI warns “The Com” cyber criminal group is recruiting American teens for malicious, and sometimes violent, cybercrime sprees.
Posted inCybersecurity News

FBI warns “The Com” cyber criminal group is recruiting American teens for malicious, and sometimes violent, cybercrime sprees.

The Federal Bureau of Investigation (FBI) has released an alarming report highlighting the growing danger posed by an online cybercriminal ecosystem known as The Com (short for “The Community”). This decentralized and increasingly sophisticated network presents a significant cybersecurity risk, particularly to young users who are being actively recruited, targeted, and exploited by its members.
Trump’s AI Action Plan outlines strategic priorities designed to strengthen national security while allowing the AI field to grow virtually unchecked.
Posted inCybersecurity News

Trump’s AI Action Plan outlines strategic priorities designed to strengthen national security while allowing the AI field to grow virtually unchecked.

The Trump administration has unveiled a sweeping new artificial intelligence (AI) policy aimed at enhancing the cybersecurity of the nation’s critical infrastructure. The initiative places AI at the heart of America's cyber defense efforts, while reaffirming the importance of “secure by design” principles in the development and deployment of AI technologies.
New cyber campaign is targeting Magento CMS and Docker containers to deploy cryptocurrency mining software.
Posted inCybersecurity News

New cyber campaign is targeting Magento CMS and Docker containers to deploy cryptocurrency mining software.

A newly observed cyber campaign attributed to a threat actor known as Mimo (also referred to as "Hezb") is targeting unpatched Magento content management systems (CMS) and misconfigured Docker environments to deploy cryptocurrency mining software and proxyware. This dual-purpose monetization strategy represents a significant escalation in Mimo’s capabilities and tactics, according to research published by security experts at Cado Labs.
The agency responsible for overseeing America’s nuclear weapons stockpile was a victim of the China’s recent SharePoint Frenzy attack.
Posted inCybersecurity News

The agency responsible for overseeing America’s nuclear weapons stockpile was a victim of the China’s recent SharePoint Frenzy attack.

The U.S. National Nuclear Security Administration (NNSA), the agency responsible for overseeing America’s nuclear weapons stockpile, was among several government institutions recently targeted in a widespread cyberattack that exploited critical vulnerabilities in Microsoft’s on-premises SharePoint software.
Well, that was entertaining. Jetflicks streaming piracy operator sentenced to seven years in federal prison.
Posted inCybersecurity News

Well, that was entertaining. Jetflicks streaming piracy operator sentenced to seven years in federal prison.

The U.S. Department of Justice has announced that Kristopher Lee Dallmann, the operator of the now-defunct illegal streaming service Jetflicks, has been sentenced to seven years in federal prison. The decision marks one of the most significant enforcement actions in recent years against digital piracy operations in the United States.
Google launches OSS Rebuild to detect malicious code in open-source packages.
Posted inCybersecurity News

Google launches OSS Rebuild to detect malicious code in open-source packages.

In response to the rising threat of software supply chain attacks, Google has launched a new security initiative, OSS Rebuild, designed to detect and prevent malicious code in widely used open-source packages. The project aims to improve transparency, integrity, and trust in the software ecosystems that power much of today’s digital infrastructure.