Latest Intelligence
Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data
The Golden Chickens threat group has introduced two new malware variants, TerraStealerV2 and TerraLogger, enhancing their capabilities to steal sensitive information such as browser credentials and cryptocurrency wallet data. This development highlights the ongoing evolution of cyber threats and the need for robust security measures.
Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack
Researchers have identified three malicious Go modules that contain obfuscated code capable of delivering payloads that can irreversibly wipe a Linux system's primary disk, making it unbootable. This advanced supply chain attack poses a significant threat to Linux users and highlights the risks associated with using seemingly legitimate software packages.
Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware
An Iranian state-sponsored threat group conducted a prolonged cyber intrusion targeting critical national infrastructure in the Middle East, lasting from May 2023 to February 2025. This operation involved extensive espionage and network prepositioning, highlighting significant vulnerabilities in the region's cybersecurity defenses.
U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems
The U.S. Department of Justice has charged Rami Khaled Ahmed, a 36-year-old Yemeni national, for deploying the Black Kingdom ransomware, which targeted approximately 1,500 systems globally, including critical sectors like businesses, schools, and hospitals in the U.S. This case highlights the ongoing threat of ransomware attacks and the international efforts to combat cybercrime.
UK Retailers Reeling From Likely Ransomware Attacks
Recent cyberattacks have targeted multiple major British retailers, with a ransomware gang claiming responsibility for the incidents. This situation highlights the increasing threat of ransomware attacks on the retail sector, which can disrupt operations and compromise sensitive data.
What NYDFS Rules Mean for Businesses (in and outside of NY)
Starting this month, finance companies in New York are required to implement enhanced protections against unauthorized access to their IT systems. This regulation underscores the importance of cybersecurity measures in the financial sector, particularly in high-risk environments like New York.
Attackers Ramp Up Efforts Targeting Developer Secrets
Threat actors are increasing their efforts to target developer secrets, necessitating software teams to adopt stringent security best practices to prevent leaks of sensitive information. The rise in scanning for configuration and repository files highlights the growing importance of safeguarding developer environments.
Despite Arrests, Scattered Spider Continues High-Profile Hacking
Despite the arrests of several alleged members of the Scattered Spider hacking group, the organization continues to engage in high-profile cyberattacks, highlighting the persistent threat they pose. This ongoing activity underscores the challenges law enforcement faces in combating sophisticated cybercriminal networks.
RSAC 2025 wrap-up – Week in security with Tony Anscombe
The RSAC 2025 event highlighted crucial themes in cybersecurity, including the importance of collaborative defense, identity security, and the role of AI in enhancing security measures. These discussions emphasize the ongoing evolution of security practices and the need for organizations to adapt to emerging threats.
Cut CISA and Everyone Pays for It
The article emphasizes that cutting funding or support for CISA (Cybersecurity and Infrastructure Security Agency) will not only eliminate a crucial partner in cybersecurity but also lead to a loss of momentum in combating threats. This decline in resources could result in significant vulnerabilities and increased risks for various sectors.
Raytheon to Pay $8.4 Million in Settlement Over Cybersecurity Failures
Raytheon, along with Nightwing, has agreed to pay $8.4 million to settle allegations under the False Claims Act related to cybersecurity failures. This settlement highlights the government's focus on ensuring defense contractors adhere to cybersecurity standards.
TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China
TikTok has been fined €530 million by Ireland's Data Protection Commission for violating GDPR regulations by transferring the data of European users to China. This significant penalty underscores the ongoing scrutiny of data privacy practices for companies operating in the European market.
In Other News: NullPoint Source Code Leak, $17,500 for iPhone Flaw, BreachForums Down
The article highlights significant recent cybersecurity events, including the leak of the NullPoint Stealer source code, a researcher receiving $17,500 from Apple for identifying an iPhone vulnerability, and the shutdown of BreachForums following police action against a zero-day exploitation. These incidents underscore ongoing security challenges and the importance of vulnerability disclosure in the tech community.
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, highlighting their active exploitation. These vulnerabilities pose significant risks to federal networks and underscore the importance of timely remediation to protect against cyber threats.
UK Retailers Co-op, Harrods and M&S Struggle With Cyberattacks
Major UK retailers Co-op, Harrods, and M&S are facing challenges in restoring services due to recent cyberattacks. This situation highlights the increasing vulnerability of retail businesses to cyber threats and the significant impact on their operations.