Security learnings from developing the NCCoE Chatbot
The NIST National Cybersecurity Center of Excellence (NCCoE) has re-issued NIST Internal Report (IR) 8579, Developing the NCCoE Chatbot: Technical and Security Learnings from the Initial…
Month: August 2025
Threat Actors Embed Malicious RMM Tools to Gain Silent Initial Access to Organizations
A sophisticated cyber campaign leveraging legitimate Remote Monitoring and Management (RMM) tools has emerged as a significant threat to European organizations, particularly those in France…
Navigating APTs – Singapore’s Cautious Response to State-Linked Cyber Attacks
Singapore’s cybersecurity landscape faced a significant challenge in July 2025 when Coordinating Minister K. Shanmugam disclosed that the nation was actively defending against UNC3886, a…
Anubis Ransomware Attacking Android and Windows Users to Encrypt Files and Steal Login Credentials
A sophisticated new ransomware threat has emerged from the cybercriminal underground, targeting both Android and Windows platforms with dual capabilities that extend far beyond traditional…
New account hijacking defences for Google Workspace and Chrome
Google has released a series of technological measures to mitigate phishing and credential theft attacks, which the technology giant said are intensifying currently. The first…
New Banking Malware DoubleTrouble Attacking Users Via Phishing Sites To Steal Banking Credentials
A sophisticated new banking trojan dubbed DoubleTrouble has emerged as a significant threat to mobile users across Europe, employing advanced evasion techniques and expanding its…
Nvidia says its chips have no ‘backdoors’
Nvidia said its products have no “backdoors” that would allow remote access or control after China raised concerns over potential security risks in the firm’s…
NOVABLIGHT as Educational Tool Attacking Users to Steal Login Credentials and Compromise Wallets
A sophisticated new threat has emerged in the cybercriminal landscape, masquerading as an educational tool while orchestrating large-scale credential theft and wallet compromise operations. NOVABLIGHT,…
Veterans’ Affairs tests using AI to tackle 82,645 unprocessed claims
The Department of Veterans’ Affairs (DVA) is preparing to pilot artificial intelligence to help manage a growing caseload of 82,645 ex-service personnel seeking financial support.…
Chinese Silk Typhoon Hackers Filed 10+ Patents for Highly Intrusive Hacking Tools
Chinese state-sponsored hackers associated with the notorious Silk Typhoon group have filed over ten patents for sophisticated cyber espionage tools, revealing the unprecedented scope of…
Russia’s FSB conducts ISP-level cyber espionage, Microsoft says
One of the Russian government’s premier cyber espionage units is deploying malware against embassies and diplomatic organizations in Moscow by leveraging local internet service providers,…
North Korean APT Hackers Poison CI/CD Pipelines To Exfiltrate Sensitive Data
A sophisticated espionage campaign orchestrated by the North Korea-backed Lazarus Group has successfully infiltrated open source software ecosystems on an unprecedented scale, transforming trusted developer…