Latest Intelligence
Google Sues Operators of 10-Million-Device Badbox 2.0 Botnet
Google has initiated legal action against the operators of the Badbox 2.0 botnet, which has compromised over 10 million Android devices. This lawsuit highlights the ongoing challenges posed by large-scale malware infections targeting mobile platforms. Read Original »
Critical Nvidia Toolkit Flaw Exposes AI Cloud Services to Hacking
Wiz researchers have identified a critical flaw in the Nvidia Container Toolkit, known as NVIDIAScape, which can be exploited to gain full control of the host machine. This vulnerability poses a significant risk to AI cloud services. Read Original »
Anne Arundel Dermatology Data Breach Impacts 1.9 Million People
Anne Arundel Dermatology experienced a data breach where hackers accessed their systems for three months, potentially compromising personal and health information of approximately 1.9 million individuals. The breach raises concerns about the security of sensitive data in healthcare systems. Read Original »
Settlement Reached in Investors’ Lawsuit Against Meta CEO Mark Zuckerberg and Other Company Leaders
A settlement has been reached in a class action lawsuit against Meta, led by CEO Mark Zuckerberg, concerning the Cambridge Analytica incident. However, specific details about the settlement have not been disclosed. Read Original »
4 Chinese APTs Attack Taiwan's Semiconductor Industry
Chinese threat actors are utilizing cyberattacks to target Taiwan's semiconductor industry, aiming to destabilize this crucial sector. This shift in tactics highlights the increasing focus on cyber warfare in geopolitical conflicts. Read Original »
Cisco Discloses '10' Flaw in ISE, ISE-PIC — Patch Now
Cisco has disclosed a critical severity flaw in its ISE and ISE-PIC products, which adds to two similar vulnerabilities reported last month. Users are urged to take immediate action to patch these vulnerabilities. Read Original »
Printer Security Gaps: A Broad, Leafy Avenue to Compromise
The article highlights significant security gaps in printer firmware management, with security teams failing to apply patches promptly and inadequate vetting of endpoints before purchase. This negligence has led to an increase in cyberattacks targeting printers. Read Original »
Armenian Extradited to US Over Ryuk Ransomware
An Armenian suspect has been extradited to the United States due to alleged involvement in the Ryuk ransomware attacks. He faces three charges that could lead to a maximum of five years in federal prison along with significant fines. Read Original »
Hackers Use GitHub Repositories to Host Amadey Malware and Data Stealers, Bypassing Filters
Threat actors are utilizing public GitHub repositories to host and distribute Amadey malware and data stealers, as part of a campaign identified in April 2025. By using fake GitHub accounts, they aim to circumvent web filtering and facilitate easier access to their malicious tools. Read Original »
Watch on Demand: Cloud & Data Security Summit – Tackling Exposed Attack Surfaces in the Cloud
The Cloud & Data Security Summit focuses on addressing the challenges posed by exposed attack surfaces in cloud environments. It features discussions from experts on evolving threats and strategies for effective cloud security defense. Read Original »
Nearly 2,000 MCP Servers Possess No Security Whatsoever
The article highlights a critical security issue where nearly 2,000 MCP servers lack any form of authentication, leaving them vulnerable to attackers. This oversight allows unauthorized individuals to gain complete control over the servers, posing significant risks to security. Read Original »
Hackers Exploit Apache HTTP Server Flaw to Deploy Linuxsys Cryptocurrency Miner
Cybersecurity researchers have identified a campaign that exploits a vulnerability in Apache HTTP Server to deploy a cryptocurrency miner named Linuxsys. The vulnerability, CVE-2021-41773, allows for remote code execution and has a high severity rating. Read Original »
Why Cybersecurity Still Matters for America's Schools
Cyberattacks on educational institutions are on the rise, prompting leadership teams to reconsider their cybersecurity strategies. However, budget constraints and funding shortfalls complicate efforts to enhance security measures. Read Original »
Empirical Security Raises $12 Million for AI-Driven Vulnerability Management
Empirical Security, a cybersecurity startup, has successfully secured $12 million in seed funding to enhance its vulnerability management platform. This funding will support the development of AI-driven solutions to address security vulnerabilities in various systems. Read Original »
China-Backed Salt Typhoon Hacks US National Guard for Nearly a Year
The article reports that the Chinese state-sponsored hacking group APT Salt Typhoon successfully accessed sensitive data from the US National Guard between March and December of the previous year. This breach highlights ongoing cybersecurity threats posed by state-sponsored actors. Read Original »