Latest Intelligence
Echo Raises $15M in Seed Funding for Vulnerability-Free Container Images
Echo has secured $15 million in seed funding to develop container images that are free from any known vulnerabilities (CVEs). This initiative aims to enhance the security of enterprise-grade software infrastructure by providing a safer alternative for containerized applications. Read Original »
Storm-2603 Deploys DNS-Controlled Backdoor in Warlock and LockBit Ransomware Attacks
The article discusses a threat actor exploiting recent security flaws in Microsoft SharePoint Server using a custom command-and-control framework known as AK47 C2. This framework features both HTTP-based and DNS-based clients, indicating a sophisticated approach to cyber attacks. Read Original »
Bill Aims to Create National Strategy for Quantum Cybersecurity Migration
Two US senators have introduced a bipartisan bill aimed at preparing federal government agencies for the threats posed by quantum computing. The legislation seeks to establish a national strategy for migrating cybersecurity measures to counteract these emerging risks. Read Original »
$1 Million Offered for WhatsApp Exploit at Pwn2Own Ireland 2025
Meta is sponsoring the Pwn2Own hacking competition, offering a significant prize of $1 million for successful exploits targeting WhatsApp. The event focuses on vulnerabilities in smartphones, WhatsApp, and wearable devices, encouraging security researchers to identify and report these issues. Read Original »
Gen Z Falls for Scams 2x More Than Older Generations
The article highlights that Generation Z is more susceptible to online scams than older generations, challenging the stereotype that older individuals are the most gullible. This trend poses significant risks for employers as they may face the consequences of these scams. Read Original »
DragonForce Ransom Cartel Profits Off Rivals' Demise
The collapse of RansomHub has resulted in significant consolidation within the ransomware ecosystem, benefiting groups like DragonForce and Qilin. This shift highlights the competitive dynamics in the cybercrime landscape following the demise of a major player. Read Original »
SafePay Claims Ingram Micro Breach, Sets Ransom Deadline
The ransomware gang has claimed responsibility for a breach involving Ingram Micro, asserting that they have stolen 3.5TB of data. They have demanded a ransom from the technology distributor to prevent a public data breach. Read Original »
Secret Blizzard Deploys Malware in ISP-Level AitM Attacks on Moscow Embassies
Secret Blizzard, a Russian nation-state threat actor, is conducting a cyber espionage campaign against foreign embassies in Moscow using ISP-level adversary-in-the-middle attacks. They are deploying a custom malware called ApolloShadow, which can install a trusted root certificate. Read Original »
3 Things CFOs Need to Know About Mitigating Threats
The article emphasizes the importance of CFOs and CISOs in framing cybersecurity as a vital business investment. It highlights the need to communicate the substantial return on investment that strong security measures can provide. Read Original »
Russia's Secret Blizzard APT Gains Embassy Access via ISPs
The article discusses an ongoing campaign by a Moscow-sponsored cyber threat actor that has expanded its operations by deploying the ApolloShadow custom backdoor malware. This malware is being facilitated through lawful intercept systems, allowing the attacker to gain access to embassy networks. Read Original »
Experts Detect Multi-Layer Redirect Tactic Used to Steal Microsoft 365 Login Credentials
Cybersecurity researchers have revealed a phishing campaign that utilizes link wrapping services from Proofpoint and Intermedia to obscure malicious payloads and evade detection. This tactic aims to steal Microsoft 365 login credentials by exploiting the protective measures intended to block harmful links. Read Original »
Getting a Cybersecurity Vibe Check on Vibe Coding
The article raises concerns about the readiness of LLMs and GenAI technologies for coding and application development, particularly in light of recent security issues. It suggests that a thorough evaluation of their cybersecurity implications is necessary before widespread adoption. Read Original »
Noma Security Raises $100 Million for AI Security Platform
Noma Security has successfully raised $100 million in a Series B funding round aimed at enhancing its AI agent security solutions. This funding will support the company's growth and expansion in the cybersecurity market. Read Original »
Chinese Researchers Suggest Lasers and Sabotage to Counter Musk’s Starlink Satellites
Chinese military and cyber researchers are focusing on countering Elon Musk's Starlink satellite network, which they perceive as a potential asset for U.S. military dominance in various domains. They are exploring methods such as lasers and sabotage to neutralize this perceived threat. Read Original »
Reach Security Raises $10 Million for Exposure Management Solution
Reach Security has secured a $10 million investment from M12 to enhance its AI-driven exposure management solution. This funding aims to further develop its domain-specific approach to cybersecurity. Read Original »