Author: Staff Writer

Quick Takeaways Collaborative Threat: Russian hacking groups Gamaredon and Turla are actively collaborating to target Ukrainian entities, leveraging shared malware tools for attacks. Malware Deployment: The recent use of tools like PteroGraphin and PteroOdd by Gamaredon has allowed Turla to deploy its Kazuar backdoor on several Ukrainian systems since early 2025. Historical Context: Gamaredon, active since 2013, and Turla, known since the late 1990s, have intensified their focus on Ukraine following Russia’s invasion, primarily targeting the defense sector. Data Gathering Tactics: The malware employed is designed to exfiltrate significant system data, indicating a sophisticated approach in accessing and compromising Ukrainian…

Top Highlights Law enforcement in the UK arrested two teenagers, Thalha Jubair and Owen Flowers, linked to the August 2024 cyber attack on Transport for London, with Jubair also charged with extensive U.S. cybercrimes. Jubair is accused of orchestrating over 120 cyber intrusions and extorting at least $115 million from U.S. entities between 2022 and 2025, causing significant disruptions to critical infrastructure. The U.S. DOJ seized cryptocurrency assets worth around $36 million from Jubair’s control and charged him with multiple counts of conspiracy, fraud, and money laundering, risking up to 95 years in prison. The NCA highlighted the rising threat…

Essential Insights Launch of RiskRubric.ai: The Cloud Security Alliance and partners have introduced RiskRubric.ai, the first AI model risk leaderboard, offering free security assessments for hundreds of AI models based on six key risk pillars. Streamlined Risk Evaluation: This platform eliminates lengthy approval bottlenecks for engineering teams by providing instant, actionable risk grades, enabling rapid AI innovation with enhanced security confidence. Comprehensive Assessment Methodology: RiskRubric.ai employs rigorous testing protocols including reliability prompts, adversarial security tests, and automated scans, offering objective scores that simplify risk assessments for AI models. Collaborative Industry Effort: Developed through collective expertise, RiskRubric.ai aims to standardize AI…

Summary Points Phishing remains highly successful because it exploits human psychology, evolving into sophisticated, multi-channel campaigns like spear phishing, clone phishing, and whaling targeting individuals and organizations. Techniques such as website forgery, account deactivation scams, and advanced scam methods like business email compromise are commonly used to deceive victims and steal sensitive data. Prevention requires layered defenses including AI/ML detection, multi-factor authentication, email filtering, and threat intelligence; platforms like Seceon enhance these with dynamic threat modeling and automated response. Phishing is often the initial step in larger cyberattacks (ransomware, data breaches), making early detection and rapid containment critical, with comprehensive…

Quick Takeaways Funding Cyber GRC: RegScale raised over $30 million in an oversubscribed Series B round, led by Washington Harbour Partners, to enhance its Continuous Controls Monitoring capabilities in the $50+ billion GRC market. Transformative Technology: The company is shifting cyber Governance, Risk, and Compliance from manual processes to an automated, AI-driven platform, enabling organizations to improve security and efficiency significantly. Industry Recognition: RegScale has achieved notable milestones, including expedited FedRAMP High Authorization and recognition as a leading compliance solution, underscoring its impact in the cybersecurity landscape. Strategic Growth: The funding will allow RegScale to expand its team and offerings…

Essential Insights Microsoft’s Digital Crimes Unit dismantled the RaccoonO365 phishing platform, seizing 338 websites and disrupting its infrastructure to combat its rapid growth—over 5,000 accounts compromised across 94 countries since July 2024. RaccoonO365 enabled cybercriminals to easily create convincing Microsoft login pages, bypass Multi-Factor Authentication, and generate hundreds of millions of malicious emails annually using AI enhancements like RaccoonO365 AI-MailCheck. The ring’s leader, Nigerian programmer Joshua Ogundipe, was identified and linked via a leaked cryptocurrency wallet, with authorities progressing towards legal action amid earnings estimated at over $100,000 from more than 100,000 dollars in crypto. Despite no specific industry focus,…

Summary Points Rising Fear of Nation-State Attacks: Nearly 80% of cybersecurity executives worry their organizations could be targeted by nation-state attacks within the next year, amid escalating geopolitical tensions and potential funding cuts to U.S. cybersecurity programs. Surge in Cyberattacks: 71% of surveyed security leaders reported an increase in cyberattacks over the past year, with 61% noting that incidents are more severe, partly due to the influence of AI in enhancing attack sophistication. AI-Powered Threats: 68% of companies lack confidence in detecting AI-driven threats in real time; generative AI phishing threats have surged by 132%, making it the top concern…

Summary Points SolarWinds experienced a security breach linked to compromised OAuth tokens in the Salesloft Drift-Salesforce integration, allowing unauthorized access to customer data. The attack aimed to steal sensitive credentials like access keys and passwords, highlighting the risks inherent in third-party software integrations. SolarWinds confirmed its systems were unaffected, as it does not use the vulnerable Salesloft Drift integration, but is treating the incident as a high priority. The incident underscores the importance of rigorous security assessments, least privilege principles, and continuous monitoring of third-party app permissions to prevent supply chain risks. Underlying Problem Recently, SolarWinds issued an advisory regarding…

Top Highlights Urgent Cybersecurity Gap: 65% of IT leaders find current security measures outdated, with only 31% confident in defending against AI-driven attacks, necessitating AI-powered defense strategies. Emerging AI Threats: Generative AI is enabling sophisticated cyberattacks, including polymorphic malware and deepfake spoofing, while 70% of IT leaders express concerns over insider threats from AI misuse. Lenovo’s Proactive Solutions: Lenovo is embedding AI security in the digital workplace through self-defending endpoints, the Care of One™ platform, and a subscription-based Cyber Resiliency as a Service (CRaaS) with high threat detection rates. AI as a Growth Enabler: Strong AI-powered security foundations lead to…

Top Highlights Microsoft 365’s dominance makes it a prime target for cybercriminals, with successful attacks potentially impacting millions across numerous organizations. Its interconnected services expand the attack surface, enabling lateral movement and cascading risks when one application, like SharePoint, is compromised. Organizations often overlook backup vulnerabilities, risking reinfection from malicious content stored in backups, which can hinder recovery efforts. Effective security requires layered defenses, zero trust architectures, and specialized expertise to mitigate the heightened risks without sacrificing productivity. The Core Issue Microsoft 365, now the cornerstone of modern business communication and collaboration with over 400 million paid users worldwide, has…