ChatGPT Safety Under Scrutiny: Psychosis and Mania Signals
AI chats can mirror delusions, escalate insomnia, and miss crisis cues. Use safer design, publish real metrics, and route users to human help.
Read More
CISA Report on Chinese Operations: BRICKSTORM Malware
The latest Cybersecurity and Infrastructure Security Agency (CISA) advisory reveals that PRC-linked hackers use a backdoor called BRICKSTORM to gain long-term access to VMware vSphere and Windows environments, affecting government and IT networks. This article unpacks the attack chain, impacted sectors and critical defensive steps organizations should take now.
Ransomware Gang Tried to Recruit BBC Reporter for Media Hack
Hackers posing as Medusa agents tried to lure BBC’s Joe Tidy into facilitating a cyberattack, offering him 15–25% of ransom payouts in exchange for his laptop’s access to the network.
Experian’s $3.2 Million Fine Highlights Data Privacy Crackdown
Data broker Experian has been fined $3.2 million after regulators found it had illegally gathered, profiled, and resold consumer data for marketing without consent. The case highlights growing regulatory scrutiny of data brokers and renewed enforcement of privacy laws across the UK and Europe.
TeamViewer DEX Vulnerabilities Expose Enterprise Endpoint Risks
Multiple vulnerabilities in TeamViewer DEX expose risks in enterprise endpoint monitoring platforms, raising concerns about unauthorized access, telemetry abuse, and internal reconnaissance within corporate environments.
North Korean Hackers Hit UAV Industry with Job Offer Malware
The Lazarus Group launched a sophisticated social-engineering campaign targeting European unmanned aerial vehicle (UAV) manufacturers via fake job offers to steal intellectual property and design data. Understanding the “Operation DreamJob” method, infection chain and mitigation is critical for defense supply-chain security.
Crisis24’s OnSolve CodeRED Exposes Data and Disrupts Alerts
A cyberattack on Crisis24’s OnSolve CodeRED platform disrupted emergency alerts for cities, counties, police and fire agencies across the U.S. The INC Ransom group claims responsibility, with stolen resident data, clear-text passwords and a rollback to older backups now forcing agencies to rebuild their notification capabilities and review credential hygiene.
TP-Link Archer Routers Affected by Severe Security Vulnerability
A critical vulnerability affecting TP-Link Archer routers exposes home and small office networks to potential remote exploitation, highlighting ongoing risks tied to unpatched consumer networking devices.
PlugX and Bookworm Deployed via DLL Side‑Loading in Targeted Cyber Espionage Campaign
A sophisticated cyber campaign used DLL side‑loading to deliver a hybrid PlugX variant and the Bookworm backdoor to telecom and ASEAN networks, revealing renewed tactics by China‑linked threat actors.
How APT24 Uses BadAudio Malware in Multi-Vector Espionage
BadAudio gives APT24 a stealthy first-stage foothold in a long-running espionage campaign that focuses on Windows environments. The C++ downloader hides behind DLL search-order hijacking, control-flow obfuscation and AES-encrypted C2, while the group rotates between watering-hole attacks, supply-chain compromises and targeted spearphishing to deliver it. This article breaks down BadAudio’s loader behavior, APT24’s evolving tradecraft and the defensive steps that help security teams detect, contain and disrupt this PRC-nexus operation.