Defense

In an alarming development, cybersecurity specialists have detected a strategic campaign orchestrated by the North Korean state-sponsored group, Lazarus APT, targeting an array of organizations, primarily focusing on critical infrastructure and financial institutions across the world. By capitalizing on one-day vulnerabilities—recently patched weaknesses not yet universally fortified by organizations—Lazarus has moved swiftly to infiltrate networks across Asia, Europe, and North

Recent developments in cybersecurity have highlighted a growing threat where malicious actors leverage unsecured Kubernetes clusters for cryptocurrency mining. This trend has shone a spotlight on the weaknesses in containerized environments that leave organizational computational assets vulnerable to exploitation. Central to this issue are common misconfigurations and inadequate authentication measures that offer attackers unauthorized access to cluster resources, turning them

In the rapidly evolving world of cybersecurity, a new vulnerability has emerged within the Linux ecosystem, specifically targeting the io_uring feature. Discovered by ARMO, this vulnerability involves a rootkit named “Curing,” which exploits io_uring to execute malicious activities while remaining undetected by conventional security tools. Such tools often focus their monitoring efforts on system calls, a method that the io_uring-based

The 2024 annual report from the Dutch Military Intelligence and Security Service (MIVD) has sent ripples through the international security community by highlighting an escalating cyber-threat from Russia aimed at weakening Dutch society and its allies. This comprehensive report sheds light on a variety of malicious cyber activities carried out by Russian operatives, including attempts at sabotaging public facility control

In recent developments, researchers have uncovered an advanced cryptojacking malware campaign that specifically targets Docker environments using an innovative mining technique. Cybersecurity experts from Darktrace and Cado Security Labs have identified this shift, indicating that attackers are moving away from traditional cryptojacking tools like XMRig to alternative methods for generating cryptocurrency. This change involves exploiting legitimate tools to earn crypto

MITRE’s launch of D3FEND CAD marks a significant transformation in the cybersecurity landscape, offering a cutting-edge tool designed to enhance how organizations model, analyze, and defend against complex cyber threats. Tailored for security architects, digital engineers, and cyber risk professionals, D3FEND CAD provides innovative capabilities that set a new benchmark for structuring and visualizing cybersecurity knowledge. The introduction of D3FEND