• New Botnet Malware 'Horabot' Targets Spanish-Speaking Users in Latin America
• The Importance of Managing Your Data Security Posture
• Camaro Dragon Strikes with New TinyNote Backdoor for Intelligence Gathering
• North Korea's Kimsuky Group Mimics Key Figures in Targeted Cyber Attacks
• MOVEit Transfer Under Attack: Zero-Day Vulnerability Actively Being Exploited
• Evasive QBot Malware Leverages Short-lived Residential IPs for Dynamic Attacks
• New Zero-Click Hack Targets iOS Users with Stealthy Root-Privilege Malware
• Unmasking XE Group: Experts Reveal Identity of Suspected Cybercrime Kingpin
• Malicious PyPI Packages Using Compiled Python Code to Bypass Detection
• How Wazuh Improves IT Hygiene for Cyber Security Resilience
• Improved BlackCat Ransomware Strikes with Lightning Speed and Stealthy Tactics
• N. Korean ScarCruft Hackers Exploit LNK Files to Spread RokRAT
• Active Mirai Botnet Variant Exploiting Zyxel Devices for DDoS Attacks
• Urgent WordPress Update Fixes Critical Flaw in Jetpack Plugin on Million of Sites
• Cybercriminals Targeting Apache NiFi Instances for Cryptocurrency Mining
• Critical Firmware Vulnerability in Gigabyte Systems Exposes ~7 Million Devices
• Beware of Ghost Sites: Silent Threat Lurking in Your Salesforce Communities
• Microsoft Details Critical Apple macOS Vulnerability Allowing SIP Protection Bypass
• 6 Steps to Effectively Threat Hunting: Safeguard Critical Assets and Fight Cybercrime
• Dark Pink APT Group Leverages TelePowerBot and KamiKakaBot in Sophisticated Attacks

• Windows 11 to require SMB signing to prevent NTLM relay attacks
• NSA and FBI: Kimsuky hackers pose as journalists to steal intel
• Burton Snowboards discloses data breach after February attack
• Malicious Chrome extensions with 75M installs removed from Web Store
• New Horabot campaign takes over victim's Gmail, Outlook accounts
• Windows 11 will let you view phone photos in File Explorer
• Harvard Pilgrim Health Care ransomware attack hits 2.5 million people
• Russia says US hacked thousands of iPhones in iOS zero-click attacks
• Google triples rewards for Chrome sandbox escape chain exploits
• New MOVEit Transfer zero-day mass-exploited in data theft attacks
• Exploit released for RCE flaw in popular ReportLab PDF library

• Malaysia goes its own Huawei, won't ban Chinese vendor from 5G network
• This malicious PyPI package mixed source and compiled code to dodge detection
• You might have been phished by the gang that stole North Korea’s lousy rocket tech
• Millions of Gigabyte PC motherboards backdoored? What's the actual score?
• Deployed publicly accessible MOVEit Transfer? Oh no. Mass exploitation underway
• Kremlin claims Apple helped NSA spy on diplomats via iPhone backdoor
• The downside of frenemies
• Amazon Ring, Alexa accused of every nightmare IoT security fail you can imagine
• Ukraine war blurs lines between cyber-crims and state-sponsored attackers
• Dark Pink cyber-spies add info stealers to their arsenal, notch up more victims
• Feds, you'll need a warrant for that cellphone border search
• Barracuda Email Security Gateways bitten by data thieves
• Criminals spent 10 days in US dental insurer's systems extracting data of 9 million
• XFS bug in Linux kernel 6.3.3 coincides with SGI code comeback
• When the popular safeguarding tool is anything but
• Thinking straight in the SoC: How AI erases cognitive bias
• 1. This crypto-coin is called Jimbo. 2. $8m was stolen from its devs in flash loan attack
• 90+ orgs tell Slack to stop slacking when it comes to full encryption
• Pegasus-pusher NSO gets new owner keen on the commercial spyware biz
• New York county still dealing with ransomware eight months after attack