Reports

Atomic research institute breached via VPN vulnerability

June 21, 2021 - A North Korean APT group is thought to be behind a attack on the South Korean atomic energy research institute, KAERI.

Read more

Two Google plans that could make open source code more secure

June 18, 2021 - Google has announced projects to ensure the integrity of open source supply chains, and to bring the Rust language to the Linux kernel

Read more

Jail for consultant who scraped colossal trove of Alibaba customer data

June 16, 2021 - A baffling number of data points gathered by Alibaba were siphoned off by a marketing consultant to help other customers.

Read more

Russia accused of hacking Dutch police during MH17 investigation

June 10, 2021 - Journalists in the Netherlands suspect that Russian group APT29 (Cozy Bear) breached Dutch Police systems looking for information about MH17.

Read more

800 arrests after police dupe crime groups into using backdoored phones

June 8, 2021 - International law enforcement created a wildly popular encrypted messaging service for criminals. And then they listened in.

Read more

Using iPhones and AirTags to sneak data out of air-gapped networks

May 13, 2021 - A researcher has discovered a method for exfiltrating data from air-gapped networks using Apple's Find My technology.

Read more

IoT riddled with BadAlloc vulnerabilities

April 30, 2021 - A set of memory allocation vulnerabilities, dubbed BadAlloc, has been found in a massive number of IoT and OT devices.

Read more

SUPERNOVA malware discovered on SolarWinds Orion server

April 23, 2021 - During an incident response investigation CISA found SUPERNOVA malware hidden on a server running SolarWinds Orion.

Read more

FIN7 sysadmin behind “billions in damage” gets 10 years

April 20, 2021 - Fedir Hladyr is considered the mastermind behind the Carbanak campaign that stole $900 million from financial institutions and others.

Read more