Latest Intelligence
VMware Flaws That Earned Hackers $340,000 at Pwn2Own Patched
Four vulnerabilities (CVEs) identified during the Pwn2Own Berlin 2025 hacking competition have been patched in VMware products. These flaws allowed hackers to earn a total of $340,000 during the event. Read Original »
Cisco Patches Another Critical ISE Vulnerability
Cisco has issued patches for several vulnerabilities, including a critical flaw in Cisco Identity Services Engine (ISE) that allows for remote code execution. This highlights the ongoing need for organizations to stay updated on security patches to mitigate risks. Read Original »
GhostContainer backdoor: malware compromising Exchange servers of high-value organizations in Asia
Kaspersky researchers have identified a new backdoor named 'GhostContainer' that targets Microsoft Exchange servers in high-value organizations across Asia. This malware is built using open-source tools and poses significant risks to affected systems. Read Original »
Chinese Hackers Target Taiwan's Semiconductor Sector with Cobalt Strike, Custom Backdoors
Chinese state-sponsored threat actors are targeting Taiwan's semiconductor industry through spear-phishing campaigns. These attacks focus on various organizations involved in semiconductor manufacturing, design, and testing, as well as related supply chain entities. Read Original »
Oracle Patches 200 Vulnerabilities With July 2025 CPU
Oracle's July 2025 Critical Patch Update addresses a significant number of security vulnerabilities, providing 309 patches for approximately 200 unique CVEs. This update is crucial for maintaining the security and integrity of Oracle's products. Read Original »
Cisco Warns of Critical ISE Flaw Allowing Unauthenticated Attackers to Execute Root Code
Cisco has revealed a critical security vulnerability in its Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) that allows unauthenticated attackers to execute arbitrary code with elevated privileges. This vulnerability, identified as CVE-2025-20337, has a maximum CVSS score of 10.0. Read Original »
Cambodia Makes 1,000 Arrests in Latest Crackdown on Cybercrime
Cambodia has conducted a significant crackdown on cybercrime, resulting in the arrest of over 1,000 suspects across at least five provinces within a span of three days. This operation was confirmed by Information Minister Neth Pheaktra and local police. Read Original »
AI Driving the Adoption of Confidential Computing
Confidential computing is increasingly being integrated into AI models, indicating a growing intersection between these two technologies. This trend suggests that the security of data processing will become more relevant as AI applications expand. Read Original »
Oracle Fixes Critical Bug in Cloud Code Editor
Oracle has addressed a critical vulnerability in its Cloud Code Editor that could have allowed attackers to compromise a comprehensive set of developer tools within the Oracle Cloud Infrastructure. This fix is essential for maintaining the security of the cloud environment. Read Original »
ISC2 Finds Orgs Are Increasingly Leaning on AI
Organizations are increasingly adopting AI to enhance their workflows and cybersecurity practices. However, there is a segment of organizations that remains hesitant, expressing concerns about the potential negative aspects of AI implementation. Read Original »
Elite 'Matanbuchus 3.0' Loader Spruces Up Ransomware Infections
The article discusses the upgraded 'Matanbuchus 3.0' loader, a cybercrime tool that enhances the efficiency of targeted ransomware attacks. It includes advanced features such as EDR-spotting and DNS-based command and control communication, making it a significant threat in the cybersecurity landscape. Read Original »
Women Who 'Hacked the Status Quo' Aim to Inspire Cybersecurity Careers
A group of female pioneers in cybersecurity aims to share their experiences and insights on overcoming challenges in a male-dominated field. Their goal is to inspire and empower other women to pursue successful careers in cybersecurity. Read Original »
Hackers Leverage Microsoft Teams to Spread Matanbuchus 3.0 Malware to Targeted Firms
Cybersecurity researchers have identified a new variant of the Matanbuchus malware loader, which enhances its stealth capabilities to evade detection. This malware-as-a-service can facilitate the delivery of various next-stage payloads, including Cobalt Strike beacons and ransomware. Read Original »
Europol-Coordinated Global Operation Takes Down Pro-Russian Cybercrime Network
A global operation, codenamed Eastwood, led by Europol has successfully dismantled the pro-Russian cybercrime group NoName057(16), known for conducting DDoS attacks on entities associated with a NATO summit. This operation highlights the ongoing threats posed by cybercriminal organizations linked to geopolitical tensions. Read Original »
Cognida.ai Launches Codien: An AI Agent to Modernize Legacy Test Automation and Fast-Track Test Creation
Cognida.ai has launched Codien, an AI agent designed to modernize legacy test automation and accelerate the process of test creation. This innovation aims to improve efficiency and effectiveness in software testing. Read Original »