Hacker in front of China Chinese flag
Posted inCybersecurity News

New threat actor, HoldingHands, targeting organizations in Taiwan.

The “HoldingHands” threat actor is part of a broader, ongoing campaign targeting organizations in Taiwan since at least January 2025. The group employs a variety of malware tools, including the HoldingHands Remote Access Trojan (RAT), also known as Gh0stBins, as well as other malware strains such as Winos 4.0 and Gh0stCringe. These tools are often delivered through phishing emails that impersonate official communications from Taiwan’s National Taxation Bureau or other trusted entities, using lures related to taxes, invoices, and pensions to trick recipients into opening malicious attachments.
Iran prepars for cyberwar, shuttong off nearly all Internet access across the country.
Posted inCybersecurity News

Iran prepars for cyberwar, shuttong off nearly all Internet access across the country.

Iran has recently slowed and, in some areas, nearly shut off internet access across the country in what officials describe as a “temporary, targeted, and controlled” measure to prevent cyberattacks, particularly from Israel, as regional tensions escalate. The move follows a series of missile exchanges and cyber operations between Israel and Iran, with both sides engaging in digital warfare alongside physical military actions.
OpenAI secures $200 million contract with DoD to develop advance AI capabilities for cyber defense.
Posted inCybersecurity News

OpenAI secures $200 million contract with DoD to develop advance AI capabilities for cyber defense.

OpenAI has secured a $200 million contract with the U.S. Department of Defense (DoD) to develop advanced artificial intelligence (AI) capabilities, with a particular focus on cyber defense and other national security applications. This marks OpenAI’s first major prime contract with the U.S. government and is the inaugural project under its new “OpenAI for Government” initiative.
What we know about the SimpleHelp Remote Monitoring and Management cyberattack.
Posted inCybersecurity News

What we know about the SimpleHelp Remote Monitoring and Management cyberattack.

In June 2025, a significant cyberattack targeted organizations using SimpleHelp’s Remote Monitoring and Management (RMM) software. The attack exploited unpatched vulnerabilities in SimpleHelp, most notably CVE-2024-57727, a path traversal flaw that allowed ransomware actors to compromise systems, steal sensitive data, and deploy ransomware in double extortion schemes.
Researchers see dramatic escalation in cyberthreats linked to Israel-Iran conflict – Here’s how to prepare for cyberwar.
Posted inCybersecurity News

Researchers see dramatic escalation in cyberthreats linked to Israel-Iran conflict – Here’s how to prepare for cyberwar.

As expected, there has been clear, well-documented evidence of a dramatic escalation in cyberthreats linked to the ongoing Israel-Iran conflict. This surge includes both the frequency and sophistication of attacks, with direct implications for Israel, Iran, their allies, and potentially the United States' infrastructure.
Hacker in front of China Chinese flag
Posted inCybersecurity News

Silver Fox is ramping up attacks against Taiwan using malware variants linked to the Gh0st RAT family.

Silver Fox APT (also known as Void Arachne) has intensified cyberattacks against Taiwan using sophisticated malware variants linked to the Gh0st RAT family, including Winos 4.0 and ValleyRAT. While “Gh0stCringe” and “HoldingHands RAT” are not explicitly named in recent reports, the group’s tactics align with evolving Gh0st RAT derivatives.