GreyNoise said its in-house AI tool, SIFT, flagged suspicious traffic aimed at disabling and exploiting a TrendMicro-powered security feature, AiProtection, enabled by default on Asus routers. Trojanizing the safety net Asus’ AiProtection, developed with TrendMicro, is a built-in, enterprise-grade security… Read More "New botnet hijacks AI-powered security tool on Asus routers"
The US banking industry is lobbying to rescind one of the US Securities and Exchange Commission’s (SEC) latest rules on cyber incident reporting. The group includes the American Bankers Association (ABA), the Bank Policy Institute (BPI), the Securities Industry and… Read More "US Banks Urge SEC to Repeal Cyber Disclosure Rule"
May 30, 2025Ravie LakshmananVulnerability / Threat Intelligence The China-linked threat actor behind the recent in-the-wild exploitation of a critical security flaw in SAP NetWeaver has been attributed to a broader set of attacks targeting organizations in Brazil, India, and Southeast… Read More "China-Linked Hackers Exploit SAP and SQL Server Flaws in Attacks Across Asia and Brazil"
In den Hotels der Arcona Gruppe kommt es aktuell zu Einschränkungen. Ursache ist ein Cyberangriff. arcona.de Die Hotelgruppe Arcona wurde Opfer einer Cyberattacke. Der Vorfall hat sich nach eigenen Angaben bereits am Freitag vergangener Woche ereignet (23. Mai). “Wir haben… Read More "Hackerangriff auf Arcona Hotels | CSO Online"
The FBI has issued a warning about the illicit activities of a Philippines-based company, which provides technology infrastructure behind the majority of cryptocurrency investment fraud (CIF) scams in US. Funnull Technology Inc. (Funnull) provides hosting services and other internet infrastructure… Read More "FBI Flags Philippines Tech Company Behind Crypto Scam Infrastructure"
May 30, 2025Ravie LakshmananCryptocurrency / Cybercrime The U.S. Department of Treasury’s Office of Foreign Assets Control (OFAC) has levied sanctions against a Philippines-based company named Funnull Technology Inc. and its administrator Liu Lizhi for providing infrastructure to conduct romance baiting… Read More "U.S. Sanctions Funnull for $200M Romance Baiting Scams Tied to Crypto Fraud"
By focusing on IoT surveillance devices, such as IP cameras and network video recorders, the botnet is exploiting equipment that is typically outside the scope of rigorous security measures. Targeted infiltration via C2 coordination PumaBot connects to a designated C2… Read More "Novel PumaBot slips into IoT surveillance with stealthy SSH break-ins"
The UK Ministry of Defence (MoD) has announced a new Cyber and Electromagnetic Command and £1bn worth investment to boost the armed forces’ digital warfare capabilities. The new command will be in charge of defending UK military networks from rising… Read More "UK MoD Launches New Cyber Warfare Command"
The proliferation of AI has rapidly introduced many new software technologies, each with its own potential misconfigurations that can compromise information security. Thus the mission of UpGuard Research: discover the vectors particular to a new technology and measure its cyber… Read More "Analyzing llama.cpp Servers for Prompt Leaks"
May 30, 2025Ravie LakshmananVulnerability / Data Breach ConnectWise, the developer of remote access and support software ScreenConnect, has disclosed that it was the victim of a cyber attack that it said was likely perpetrated by a nation-state threat actor. “ConnectWise… Read More "ConnectWise Hit by Cyberattack; Nation-State Actor Suspected in Targeted Breach"
