Posted inVulnerabilities
From Cybersecurity Help – Cyber Security Week in Review: March 21, 2025
In brief: Windows zero-day abused in widespread APT campaigns, the US lifts sanctions on Tornado Cash, and more. Read More
Posted inNews
From The Hacker News – UAT-5918 Targets Taiwan’s Critical Infrastructure Using Web Shells and Open-Source Tools
Threat hunters have uncovered a new threat actor named UAT-5918 that has been attacking critical infrastructure entities in Taiwan since at least 2023.
"UAT-5918, a threat actor believed to be motivated by establishing long-term access for information theft, uses a combination of web shells and open-sourced tooling to conduct post-compromise activities to establish persistence in victim
Posted inVulnerabilities
From Cybersecurity Help – Cyber Security Week in Review: March 14, 2025
In brief: Microsoft, Apple fix zero-days, LockBit ransomware dev extradited to the US, and more. Read More
_JIRAROJ_PRADITCHAROENKUL_Alamy.jpg)
Posted inNews
From Dark Reading – Consumer Groups Push IoT Security Bill to Address EoL Concerns
Consumer Reports, Secure Resilient Future Foundation (SRFF) and US Public Interest Research Group (PIRG) introduced a model bill to increase transparency around Internet of Things that have reached end-of-life status. Read…
Posted inNews
From Dark Reading – China-Backed Hackers Backdoor US Carrier-Grade Juniper MX Routers
Mandiant researchers found the routers of several unnamed organizations (likely telcos and ISPs) were hacked by UNC3886, and contained a custom backdoor called "TinyShell." Read More
_Jochen_Tack_Alamy.png)
Posted inNews
From Dark Reading – Volt Typhoon Strikes Massachusetts Power Utility
The prolonged attack, which lasted 300+ days, is the first known compromise of the US electric grid by the Voltzite subgroup of the Chinese APT; during it, the APT attempted…