2025-02-25 • Félix Aime, Jeremy Scion, Sekoia TDR • elf.polaredge Open article on Malpedia
Data from Resilience found that third-party attacks made up 23% of material cyber insurance claims in 2024, with ransomware attacks targeting vendors a major driver
Black Basta chat logs reveal threat intel, Termite ransomware leaks patient data on the dark web, and Ghostwriter targets Belarusian opposition.
The hackers reportedly exploited a flaw in US cybersecurity firm Barracuda’s software to access VSSE's email server © 2024 TechCrunch. All rights reserved. For personal use only.
Researchers from Modat detailed a significant global security risk stemming from misconfigured and inadequately secured access management systems... The post Modat researchers reveal massive AMS...
2025-02-24 • Palo Alto Networks Unit 42 • Alex Armstrong Open article on Malpedia
The Qilin ransomware gang has claimed responsibility for the attack at Lee Enterprises that disrupted operations on February 3, leaking samples of data they claim was stolen from the company. [...]
2025-02-24 • EUR-Lex • Official Journal of the European Union Open article on Malpedia
2025-02-26 • FBI • IC3 Open article on Malpedia
2025-02-27 • Elastic • Ruben Groenewoud • sh.panix Open article on Malpedia
2025-02-24 • SecurityScorecard • SecurityScorecard STRIKE Team Open article on Malpedia
2025-02-26 • POLITICO • Antoaneta Roussi Open article on Malpedia
2025-02-27 • Fortinet • Pei Han Liao • win.valley_rat, win.winos Open article on Malpedia
2025-02-27 • WAR ON THE ROCKS • Nathaniel Davis, Nina Kollars Open article on Malpedia
2025-02-25 • Sentinel LABS • Tom Hegel Open article on Malpedia
2025-02-26 • Medium extensiontotal • Amit Assaraf Open article on Malpedia
2025-02-27 • Microsoft • Steven Masada Open article on Malpedia
CERT Polska has received a report about 5 vulnerabilities (from CVE-2025-22270 to CVE-2025-22274) found in CyberArk Endpoint Privilege Manager software.
Law enforcement agencies from 19 countries have arrested 25 suspects linked to a criminal ring that was distributing child sexual abuse material (CSAM) generated using artificial intelligence (AI). [...]
Authorities said they arrested a 39-year-old in Bangkok who was the hacker responsible for dozens of high-profile extortion cases.
2025-02-27 • Cyber Geeks • CyberMasterV Open article on Malpedia
Hot on the heels of the disclosure of CVE-2025-1001, a novel Medixant RadiAnt DICOM Viewer vulnerability, another security issue emerges in the cyber threat landscape. A newly identified flaw,...
Karen Evans has been appointed as the new Executive Assistant Director (EAD) for Cybersecurity at the Cybersecurity and Infrastructure Security Agency (CISA). In this new role, Evans brings an...
U.S. lawmakers from the Senate and House of Representatives have reintroduced the Farm and Food Cybersecurity legislation that... The post Farm and Food Cybersecurity Act reintroduced to protect...
KELA researchers reported that the Black Basta leak revealed critical patterns used by ransomware operators to infiltrate corporate... The post Black Basta leak exposes critical ransomware tactics...
In February 2025, Sophos completed the Secureworks deal and SolarWinds went private
Incorrect Privilege Assignment vulnerability (CVE-2025-1413) has been found in DaVinci Resolve application.
Louis Donald Mendonsa, 62, was sentenced following a guilty plea for distributing child sexual abuse materials (CSAM) via…
Serbian authorities have reportedly used an Android zero-day exploit chain developed by Cellebrite to unlock the device of a student activist in the country and attempt to install spyware. [...]
Welcome to the Threat Context Monthly blog series where we provide a comprehensive roundup of the most relevant cybersecurity news and threat information from KrakenLabs, Outpost24’s cyber threat...