My Courses
-
Considering Browsers as a Vulnerability Target: Reevaluating Security for Scattered Spider
As enterprises increasingly transition their operations to web-based platforms, security teams encounter a rising array of cyber challenges. Over 80% of security incidents now stem…
-
ScarCruft’s “Operation HanKook Phantom” targeting South Korean academics with RokRAT malware
Cybersecurity researchers have identified a new phishing campaign orchestrated by the North Korea-linked hacking group known as ScarCruft (also referred to as APT37), aimed at…
-
Velociraptor forensic tool used for command and control tunneling
Cybersecurity researchers have highlighted a recent cyber attack involving the deployment of Velociraptor, an open-source endpoint monitoring and digital forensic tool, by unknown threat actors….
-
Abandoned Sogou Zhuyin update server compromised and repurposed for Taiwan espionage operation
An abandoned update server linked to the Input Method Editor (IME) software Sogou Zhuyin was exploited by threat actors in an espionage campaign that delivered…
-
Amazon disrupts APT29 watering hole attack using Microsoft Device Code Authentication
On Friday, Amazon reported that it had identified and disrupted an opportunistic watering hole campaign orchestrated by the Russia-linked APT29 actors, aimed at intelligence gathering….
-
FreePBX servers exploited by zero-day vulnerability
The Sangoma FreePBX Security Team has issued a critical advisory regarding an actively exploited zero-day vulnerability affecting FreePBX systems with an exposed Administrator Control Panel…
-
Can your security system monitor your employee’s generative AI prompts?
Generative AI platforms such as ChatGPT, Gemini, Copilot, and Claude are becoming increasingly prevalent in organisations. While these solutions enhance efficiency across various tasks, they…
-
Storm-0501 utilizes Entra ID to extract and erase Azure data during hybrid cloud attacks
The financially motivated threat actor known as Storm-0501 has been observed refining its tactics to conduct data exfiltration and extortion attacks targeting cloud environments. Unlike…
-
First AI-driven ransomware leveraging OpenAI model
ESET, a cybersecurity company, has disclosed the discovery of an artificial intelligence (AI)-powered ransomware variant codenamed PromptLock. Written in Golang, this newly identified strain utilises…
-
Anthropic AI used for cybercrime
A new report from Anthropic reveals that criminals are increasingly using AI to manage various aspects of their operations. The findings indicate that AI is…