Fake North Korean IT Workers Now Extort Employers

North Korean nationals using fake or stolen identities to obtain employment with companies, accessing confidential data, and demanding ransom payments from the employers.

Feds Indict Sudanese Men Who Allegedly Ran DDoS Ring

The Anonymous Sudan group targeted the FBI, DoD, Microsoft, and hospitals.

Iranian Actors Hit Critical Infrastructure Firms With Brute Force Attacks

CISA says that Iranian threat actors have targeted the healthcare, government, information technology, engineering, and energy sectors

Microsoft Scripting Engine Flaw Exploited in Malware Attacks

The (now-patched) Microsoft flaw was being exploited by North Korean threat actors earlier this year, according to a new alert.

Exploits Target Critical FortiGate Bug

Attackers are targeting a known vulnerability in Fortinet’s widely deployed FortiGate security appliances.

Mozilla, Tor Project Warn Users of Exploited Firefox Flaw

Mozilla is urging Firefox users to apply patches for a critical-severity vulnerability (CVE-2024-9680) that is being exploited in the wild.

China Backdoored U.S. Telecom Backdoors

U.S.: Russian SVR Cyber Activity Poses a 'Global Threat'

🎓️ Vulnerable U | #085

Government Wiretaps, AI Girlfriends getting hacked, Microsoft, Firefox, Palo Alto Networks, and Qualcomm vulns, and more!

Internet Archive Hit by DDoS Attacks, Breach of 31M Records

The Internet Archive is still offline due to DDoS attacks as recently as Thursday morning.

Series of Bugs in Palo Alto Expedition Grant Full Access

Microsoft Fixes Two Actively Exploited Bugs