Latest Intelligence
State-Backed HazyBeacon Malware Uses AWS Lambda to Steal Data from SE Asian Governments
A new campaign targeting governmental organizations in Southeast Asia has emerged, utilizing a previously undocumented Windows backdoor named HazyBeacon to steal sensitive information. This activity is being monitored by Palo Alto Networks Unit 42, indicating a state-backed motivation behind the threat actors involved. Read Original »
Securing Agentic AI: How to Protect the Invisible Identity Access
AI agents are increasingly automating various tasks, but they require authentication through high-privilege credentials that are often not visible to defenders. This has led to a situation where non-human identities outnumber human accounts in cloud environments, raising significant security concerns. Read Original »
AsyncRAT's Open-Source Code Sparks Surge in Dangerous Malware Variants Across the Globe
The article discusses the rise of AsyncRAT, a remote access trojan that has become a significant threat since its release in 2019. It highlights how AsyncRAT has led to the development of various dangerous malware variants, marking its importance in the landscape of modern cybersecurity threats. Read Original »
North Korean Hackers Flood npm Registry with XORIndex Malware in Ongoing Attack Campaign
North Korean hackers have been identified as publishing 67 malicious packages to the npm registry, part of a broader campaign to compromise the open-source ecosystem through software supply chain attacks. These packages have already garnered over 17,000 downloads, indicating a significant threat to users. Read Original »