News

NICKEL TAPESTRY expands fraudulent worker operations

Bys s May 8, 2025

The North Korean IT worker scheme grows to include organizations in Europe and Asia and industries beyond the technology sector

News

Over 70 Organizations Across Multiple Sectors Targeted by China-Linked Cyber Espionage Group
Bys s June 9, 2025

The reconnaissance activity targeting American cybersecurity company SentinelOne was part of a broader set of partially-related intrusions into several targets between July 2024 and March 2025. “The victimology includes a South Asian government entity, a European media organization, and more than 70 organizations across a wide range of sectors,” security researchers Aleksandar Milenkoski and Tom

Read More Over 70 Organizations Across Multiple Sectors Targeted by China-Linked Cyber Espionage Group
News

Critical React Native CLI Flaw Exposed Millions of Developers to Remote Attacks
Bys s November 4, 2025

Details have emerged about a now-patched critical security flaw in the popular “@react-native-community/cli” npm package that could be potentially exploited to run malicious operating system (OS) commands under certain conditions. “The vulnerability allows remote unauthenticated attackers to easily trigger arbitrary OS command execution on the machine running react-native-community/cli’s

Read More Critical React Native CLI Flaw Exposed Millions of Developers to Remote Attacks
News

The Time-Saving Guide for Service Providers: Automating vCISO and Compliance Services
Bys s September 10, 2025

Introduction Managed service providers (MSPs) and managed security service providers (MSSPs) are under increasing pressure to deliver strong cybersecurity outcomes in a landscape marked by rising threats and evolving compliance requirements. At the same time, clients want better protection without managing cybersecurity themselves. Service providers must balance these growing demands with the

Read More The Time-Saving Guide for Service Providers: Automating vCISO and Compliance Services
News

Shared secret: EDR killer in the kill chain
Bys s August 6, 2025

A look under the hood at a tool designed to disable protections

Read More Shared secret: EDR killer in the kill chain
News

Veeam and IBM Release Patches for High-Risk Flaws in Backup and AIX Systems
Bys s March 20, 2025

Veeam has released security updates to address a critical security flaw impacting its Backup & Replication software that could lead to remote code execution. The vulnerability, tracked as CVE-2025-23120, carries a CVSS score of 9.9 out of 10.0. It affects 12.3.0.310 and all earlier version 12 builds. “A vulnerability allowing remote code execution (RCE) by…

Read More Veeam and IBM Release Patches for High-Risk Flaws in Backup and AIX Systems
News

Germany Shuts Down eXch Over $1.9B Laundering, Seizes €34M in Crypto and 8TB of Data
Bys s May 10, 2025

Germany’s Federal Criminal Police Office (aka Bundeskriminalamt or BKA) has seized the online infrastructure and shutdown linked to the eXch cryptocurrency exchange over allegations of money laundering and operating a criminal trading platform. The operation was carried out on April 30, 2025, authorities said, adding they also confiscated 8 terabytes worth of data and cryptocurrency…

Read More Germany Shuts Down eXch Over $1.9B Laundering, Seizes €34M in Crypto and 8TB of Data

Similar Posts