Month: July 2025

The Russian nation-state threat actor known as Secret Blizzard has been observed orchestrating a new cyber espionage campaign targeting foreign embassies located in Moscow by means of an adversary-in-the-middle (AitM) attack at the Internet Service Provider (ISP) level and delivering a custom malware dubbed ApolloShadow. "ApolloShadow has the capability to install a trusted root certificate to

To reposition cybersecurity as a strategic, business-critical investment, CFOs and CISOs play a critical role in articulating the significant ROI that robust security measures can deliver. Read More  

An ongoing AitM campaign by the infamous Moscow-sponsored cyber-threat actor has widened its scope, dropping the dangerous ApolloShadow custom backdoor malware thanks to lawful intercept systems. Read More  

Cybersecurity researchers have disclosed details of a new phishing campaign that conceals malicious payloads by abusing link wrapping services from Proofpoint and Intermedia to bypass defenses. "Link wrapping is designed by vendors like Proofpoint to protect users by routing all clicked URLs through a scanning service, allowing them to block known malicious destinations at the moment of click,"

Following a number of high-profile security and development issues surrounding the use of LLMs and GenAI to code and create applications, it's worth taking a temperature check to ask: Is…

[[{"value":"Noma Security has announced a Series B funding round that will enable the company’s growth and expansion of its AI agent security solutions.  The post Noma Security Raises $100 Million…

[[{"value":"Chinese military and cyber researchers are intensifying efforts to counter Elon Musk’s Starlink satellite network, viewing it as a potential tool for U.S. military power across nuclear, space, and cyber…

[[{"value":"Reach Security has received a $10 million strategic investment from M12 to advance its domain-specific AI approach for exposure management. The post Reach Security Raises $10 Million for Exposure Management…

The lesson from the breach is not just about what went wrong — but what could have gone right. Read More  

[[{"value":"The tool includes resources to help organizations during the containment and eviction stages of incident response. The post Open Source CISA Tool Helps Defenders With Hacker Containment, Eviction appeared first…

The North Korea-linked threat actor known as UNC4899 has been attributed to attacks targeting two different organizations by approaching their employees via LinkedIn and Telegram. "Under the guise of freelance opportunities for software development work, UNC4899 leveraged social engineering techniques to successfully convince the targeted employees to execute malicious Docker containers in their

Dark Reading Confidential Episode 8: Federal funding for the CVE Program expires in April 2026, and a trio of experts agree the industry isn't doing enough to deal with the…

[[{"value":"Why context, behavioral baselines, and multi-source visibility are the new pillars of identity security in a world where credentials alone no longer cut it. The post Who’s Really Behind the…

Using the API Connections for Azure Logic Apps, a security researcher found unauthenticated users could access sensitive data of other customers. Read More  

[[{"value":"Wallarm has raised money in a Series C funding round led by Toba Capital, which brings the total raised by the company to over $70 million. The post API Security…