Podcast: RSA 2025 – AI’s risk surface and the role of the CISO
In this podcast, we talk to Mathieu Gorge, CEO of Vigitrust, about key topics at RSA 2025 in San Francisco. The impact of artificial intelligence…
Month: May 2025
Microsoft Sinkholes Domains, Disrupts Notorious ‘Lumma Stealer’ Malware Operation
Microsoft and global law enforcement agencies on Wednesday announced the takedown of “Lumma Stealer” malware operation, seizing 2,300 domains that formed the infostealer’s command-and-control backbone…
Multi-national warning issued over Russia’s targeting of logistics, tech firms
A joint advisory from intelligence and cybersecurity agencies in the United States, United Kingdom, Canada, Australia and multiple European countries has detailed an ongoing Russian…
Russia to enforce location tracking app on all foreigners in Moscow
The Russian government has introduced a new law that makes installing a tracking app mandatory for all foreign nationals in the Moscow region. The new…
Docker Zombie Malware Infects Containers for Crypto Mining and Self-Replication
A novel malware campaign targeting containerized infrastructures has emerged, exploiting insecurely exposed Docker APIs to spread malicious containers and mine Dero cryptocurrency. Dubbed a “Docker…
Lumma Stealer Malware-as-a-Service operation disrupted
A coordinated action by US, European and Japanese authorities and tech companies like Microsoft and Cloudflare has disrupted the infrastructure behind Lumma Stealer, the most…
NCSC: Russia’s Fancy Bear targeting logistics, tech organisations
As Russia continues its relentless assaults on Ukraine despite in defiance of continuing efforts to work towards a peace deal, multiple western security agencies have…
3AM ransomware uses spoofed IT calls, email bombing to breach networks
A 3AM ransomware affiliate is conducting highly targeted attacks using email bombing and spoofed IT support calls to socially engineer employees into giving credentials for…
Hackers Target Mobile Users Using PWA JavaScript to Bypass Browser Security
A sophisticated new injection campaign has been uncovered, targeting mobile users through malicious third-party JavaScript to deliver a Chinese adult-content Progressive Web App (PWA) scam.…
M&S cyber attack disruption likely to last until July
Marks and Spencer (M&S) leadership believes that it may take at least another month to fully recover following a ransomware attack that it now looks…
Russian GRU Hackers Targeting Logistics And Tech Firms
In a joint cybersecurity advisory issued today, U.S. and allied intelligence agencies confirmed what many threat analysts have long suspected: the Russian GRU military intelligence…
Microsoft leads international takedown of Lumma Stealer
Microsoft’s Digital Crimes Unit (DCU) on Wednesday announced an international operation to disrupt Lumma Stealer, a variant of infostealing malware that is popular with criminal…