The cybercrime group behind the Qilin ransomware-as-a-service (RaaS) operation is now offering legal counsel for affiliates to increase pressure on victims to pay ransom. This move comes as the group aims to capitalize on the void left by other ransomware …
Qilin Ransomware Adds “Call Lawyer” Feature to Pressure Victims for Larger Ransoms Read More »
î ‚Jun 21, 2025î „Ravie Lakshmanan Cyber Attack / Critical Infrastructure The April 2025 cyber attacks targeting U.K. retailers Marks & Spencer and Co-op have been classified as a “single combined cyber event.” That’s according to an assessment from the Cyber Monitoring …
Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages Read More »
Hackers never rest, which is why it’s crucial for enterprise defenses to remain vigilant at all times. Threat actors often target businesses during off-hours when security personnel are scarce, leading to delays in response and remediation. For instance, when retail …
î ‚Jun 19, 2025î „Ravie Lakshmanan Email Security / Identity Protection Threat actors with suspected ties to Russia have been observed taking advantage of a Google account feature called application specific passwords (or app passwords) as part of a novel social engineering …
Russian APT29 Exploits Gmail App Passwords to Bypass 2FA in Targeted Phishing Campaign Read More »
Discover the event trusted by enterprise leaders for almost twenty years. VB Transform brings together the individuals shaping real enterprise AI strategy. Find out more Cloud costs are escalating in this age of generative AI, with enterprises projected to waste …
î ‚Jun 17, 2025î „Ravie LakshmananBotnet / Vulnerability Cybersecurity researchers have identified a new campaign exploiting a critical security flaw in Langflow to distribute the Flodrix botnet malware. According to a technical report by Trend Micro researchers Aliakbar Zahravi, Ahmed Mohamed Ibrahim, …
New Flodrix Botnet Variant Exploits Langflow AI Server RCE Bug to Launch DDoS Attacks Read More »
Cybersecurity experts have uncovered a malicious package on the Python Package Index (PyPI) repository that can extract sensitive developer-related data, such as credentials, configuration information, and environment variables. The package, known as chimera-sandbox-extensions, received 143 downloads and appears to have …
î ‚Jun 13, 2025î „Ravie LakshmananWeb Security / Network Security Cybersecurity researchers have uncovered a widespread campaign compromising legitimate websites with malicious JavaScript injections. The injected code, obfuscated using JSFuck, hides its true purpose, hindering analysis. The campaign has infected over 269,000 …
Over 269,000 Websites Infected with JSFireTruck JavaScript Malware in One Month Read More »
A recent malware campaign has exploited a vulnerability in Discord’s invitation system to distribute a data stealer named Skuld and the AsyncRAT remote access trojan. According to a technical report by Check Point, attackers manipulated vanity link registrations to redirect …
Apple recently revealed that a security flaw in its Messages app, now patched, was exploited in cyber attacks targeting civil society members. The vulnerability, known as CVE-2025-43200, was fixed on February 10, 2025, in updates for iOS, iPadOS, macOS, watchOS, …
Apple Zero-Click Flaw in Messages Exploited to Spy on Journalists Using Paragon Spyware Read More »
