Silver Fox APT Targets Taiwan with Complex Gh0stCringe and HoldingHands RAT Malware

Jun 17, 2025Ravie LakshmananMalware / Email Security Cybersecurity researchers are warning of a new phishing campaign that’s targeting users in Taiwan with malware families such as HoldingHands RAT and Gh0stCringe. The activity is part of a broader campaign that delivered the Winos 4.0 malware framework earlier this January by sending phishing messages impersonating Taiwan’s National […]

Continue Reading

Samsung’s 3nm Exynos 2500 SoC to Get This Major Connectivity Feature

Samsung’s Exynos 2500 system-on-a-chip (SoC) is now confirmed to feature satellite connectivity for emergency messaging. The confirmation came from Skylo, a US-based non-terrestrial network (NTN) provider, on Monday. This is the second confirmed information about the South Korean tech giant’s next-generation 3nm processor, which was first announced to be in development last year. As per […]

Continue Reading

Google Warns of Scattered Spider Attacks Targeting IT Support Teams at U.S. Insurance Firms

Jun 17, 2025Ravie LakshmananThreat Intelligence / Identity Security The notorious cybercrime group known as Scattered Spider (aka UNC3944) that recently targeted various U.K. and U.S. retailers has begun to target major insurance companies, according to Google Threat Intelligence Group (GTIG). “Google Threat Intelligence Group is now aware of multiple intrusions in the U.S. which bear […]

Continue Reading

Pain management startup Sword Health expands into mental health, raises $40 million

Sword Health, a startup focused on helping people deal with pain through digital services, is expanding into mental health and has raised additional capital to fuel its growth. The 10-year-old company is introducing Mind, which uses a combination of artificial intelligence, hardware and human mental health professionals to treat patients with mild depression and anxiety. […]

Continue Reading

Are Forgotten AD Service Accounts Leaving You at Risk?

For many organizations, Active Directory (AD) service accounts are quiet afterthoughts, persisting in the background long after their original purpose has been forgotten. To make matters worse, these orphaned service accounts (created for legacy applications, scheduled tasks, automation scripts, or test environments) are often left active with non-expiring or stale passwords. It’s no surprise that […]

Continue Reading

Trump’s $499 smartphone will likely be made in China

US President Donald Trump uses a cellphone aboard Marine One before it departs Leesburg Executive Airport in Leesburg, Virginia, on April 24, 2025. Trump is returning to the White House after attending a MAGA, Inc. dinner at the Trump National Golf Club Washington, DC. Alex Wroblewski | AFP | Getty Images The Trump Organization’s newly-announced […]

Continue Reading

Hard-Coded ‘b’ Password in Sitecore XP Sparks Major RCE Risk in Enterprise Deployments

Jun 17, 2025Ravie LakshmananVulnerability / Enterprise Software Cybersecurity researchers have disclosed three security flaws in the popular Sitecore Experience Platform (XP) that could be chained to achieve pre-authenticated remote code execution. Sitecore Experience Platform is an enterprise-oriented software that provides users with tools for content management, digital marketing, and analytics and reports. The list of […]

Continue Reading

Backups Are Under Attack: How to Protect Your Backups

Ransomware has become a highly coordinated and pervasive threat, and traditional defenses are increasingly struggling to neutralize it. Today’s ransomware attacks initially target your last line of defense — your backup infrastructure. Before locking up your production environment, cybercriminals go after your backups to cripple your ability to recover, increasing the odds of a ransom […]

Continue Reading