Latest Intelligence
M-Trends 2025: State-Sponsored IT Workers Emerge as Global Threat
Mandiant's M-Trends 2025 report highlights the growing threat posed by state-sponsored IT workers who are increasingly engaging in credential theft and insider threats. This trend underscores the need for organizations to adapt their defenses to keep pace with evolving attack strategies.
Vehicles Face 45% More Attacks, 4 Times More Hackers
Cybersecurity threats targeting vehicles have surged, with a 45% increase in attacks and a fourfold rise in the number of hackers. The primary concerns are ransomware attacks against Original Equipment Manufacturers (OEMs) and compromised electric vehicle chargers.
Inside the Verizon 2025 DBIR: Five Trends That Signal a Shift in the Cyber Threat Economy
The 2025 Verizon Data Breach Investigations Report highlights the maturation of cybercrime into a complex ecosystem characterized by interdependent threats. With over 12,000 breaches analyzed, the report underscores the significance of understanding these evolving cyber threats for better defense strategies.
Scamnetic Raises $13 Million to Prevent Scams in Real Time
Scamnetic, an AI-powered cybersecurity startup, has successfully raised $13 million in a Series A funding round, which will be used to enhance its capabilities in real-time scam prevention. This funding highlights the growing importance of addressing online scams and protecting users from potential threats.
Manifest Raises $15 Million for SBOM Management Platform
Manifest, a firm focused on software and AI supply chain transparency, has successfully raised $15 million in a Series A funding round led by Ensemble VC. This funding aims to enhance their SBOM (Software Bill of Materials) management platform, which is crucial for improving supply chain security in software development.
In Other News: Prison for Disney Hacker, MITRE ATT&CK v17, Massive DDoS Botnet
A former Disney employee has been sentenced to prison for hacking the company, highlighting the ongoing issues of insider threats in cybersecurity. Additionally, MITRE has released ATT&CK v17, a significant update to its framework, and a massive DDoS botnet has been identified, comprising 1.3 million devices, raising concerns about the scale of such attacks.
South Korean Companies Targeted by Lazarus via Watering Hole Attacks, Zero-Days
South Korean companies have been targeted in a Lazarus campaign known as Operation SyncHole, utilizing watering hole attacks and zero-day vulnerabilities. This campaign highlights the ongoing threat posed by sophisticated cyber espionage groups.
RSA Conference 2025 – Pre-Event Announcements Summary (Part 2)
The RSA Conference 2025 in San Francisco will feature hundreds of companies presenting their latest cybersecurity products and services. This event is significant as it showcases advancements in the cybersecurity industry and highlights emerging threats and solutions.
SAP Confirms Critical NetWeaver Flaw Amid Suspected Zero-Day Exploitation by Hackers
A critical vulnerability in SAP NetWeaver is suspected to be exploited by threat actors to upload JSP web shells, enabling unauthorized file uploads and code execution. This issue may be linked to a previously disclosed vulnerability or an unreported remote file inclusion issue.
Why NHIs Are Security's Most Dangerous Blind Spot
The article highlights the rising threat posed by Non-Human Identities (NHIs) in cybersecurity, particularly focusing on the security risks associated with Service Accounts. As NHIs grow in prevalence, they represent a significant blind spot for security teams, necessitating urgent attention and action.
Triada strikes back
Kaspersky experts have identified a new version of the Triada Trojan, which includes custom modules targeting popular applications such as Telegram, WhatsApp, and TikTok. This development highlights the evolving tactics of malware developers and the persistent threat they pose to mobile users.
SAP Zero-Day Possibly Exploited by Initial Access Broker
A zero-day vulnerability in SAP NetWeaver has been identified, potentially impacting over 10,000 internet-facing applications. This vulnerability poses a significant security risk as it may be exploited by initial access brokers.
All Major Gen-AI Models Vulnerable to ‘Policy Puppetry’ Prompt Injection Attack
A new attack technique called Policy Puppetry has been identified, which can compromise major generative AI models, leading to the generation of harmful outputs. This vulnerability highlights significant security risks associated with AI systems.
Deepfake 'doctors' take to TikTok to peddle bogus cures
AI-generated deepfake 'doctors' on TikTok are misleading users by promoting dubious health supplements, taking advantage of public trust in medical professionals. This trend raises significant concerns about misinformation and potential health risks associated with unverified treatments.
Researchers Identify Rack::Static Vulnerability Enabling Data Breaches in Ruby Servers
Researchers have identified three vulnerabilities in the Rack Ruby web server interface that could allow attackers to access files, inject malicious data, and manipulate logs. This poses a significant risk to the security of Ruby-based applications and servers.