Iranian Hackers Target Global Airlines to Steal Sensitive Data
APT39, a hacker collective connected to Iran’s Ministry of Intelligence and Security (MOIS), was exposed as operating through the compromised internal systems of the Iranian…
Month: July 2025
Microsoft Reveals Chinese State Hackers Exploiting SharePoint Flaws
Microsoft’s critical new update reveals that specific Chinese nation-state threat groups are actively exploiting vulnerabilities in its on-premises SharePoint servers. Following an earlier report from…
Microsoft Links Ongoing SharePoint Exploits to Three Chinese Hacker Groups
Jul 22, 2025Ravie LakshmananVulnerability / Threat Intelligence Microsoft has formally tied the exploitation of security flaws in internet-facing SharePoint Server instances to two Chinese hacking…
Overconfidence in cyber security: a silent catalyst for CNI breaches
Critical National Infrastructure (CNI) lies at the heart of modern society, powering essential systems vital for daily life. Yet, it has become an attractive target…
new ToolShell attacks target enterprises
SharePoint under fire: new ToolShell attacks target enterprises Pierluigi Paganini July 22, 2025 While SentinelOne did not attribute the attack to a specific threat actor,…
Ransomware attacks in education jump 23% year over year
Dive Brief: Ransomware attacks against schools, colleges and universities rose 23% year over year in the first half of 2025, according to a report from…
Threat Intelligence That Powers Best SOCs Worldwide Is Now Free
Quality threat intelligence has traditionally been the domain of enterprise-level budgets and premium subscriptions. The kind of fresh, actionable data that transforms how SOCs operate…
Scavenger Malware Compromises Popular npm Packages to Target Developers
The well-known npm package eslint-config-prettier was released without authorization, according to several GitHub users, even though its repository did not contain any corresponding code changes.…
Microsoft confirms China link to SharePoint hacks
Microsoft has revealed that Chinese state threat actors are actively targeting and exploiting a highly-dangerous new zero-day vulnerability in SharePoint Server, confirming earlier reports from…
Microsoft sees China-backed nation-state hackers among adversaries targeting SharePoint
Microsoft on Tuesday said it has identified two experienced Chinese government-backed threat groups exploiting a recently disclosed vulnerability in its SharePoint servers. The groups, which…
Microsoft SharePoint zero-day attacks pinned on China-linked ‘Typhoon’ threat groups
Microsoft said two China nation-state threat groups and a separate attacker based in China are exploiting the zero-day vulnerabilities that first caused havoc to SharePoint…
Interlock Ransomware With Double Extortion Tactics Attacking Windows and Linux Systems
The Cybersecurity and Infrastructure Security Agency (CISA), FBI, Department of Health and Human Services, and Multi-State Information Sharing and Analysis Center have issued an urgent…