CyberAlerts

North Korean Konni APT Targets Ukraine with Malware to track Russian Invasion Progress

Description: The North Korea-linked threat actor known as Konni APT has been attributed to a phishing campaign targeting government entities in Ukraine, indicating the threat actor's targeting beyond Russia. Enterprise security firm Proofpoint said the end goal of the campaign is to collect intelligence on the "trajectory of the Russian invasion." "The group's interest in Ukraine follows historical targeting

Source: TheHackerNews

May 13th, 2025 (about 1 month ago)

Deepfake Defense in the Age of AI

Description: The cybersecurity landscape has been dramatically reshaped by the advent of generative AI. Attackers now leverage large language models (LLMs) to impersonate trusted individuals and automate these social engineering tactics at scale. Let’s review the status of these rising attacks, what’s fueling them, and how to actually prevent, not detect, them. The Most Powerful Person on the

Source: TheHackerNews

May 13th, 2025 (about 1 month ago)

Marks & Spencer admits cybercrooks made off with customer info

Source: TheRegister

May 13th, 2025 (about 1 month ago)

Marks & Spencer Confirms Customer Data Theft in April Cyberattack

Description: Marks & Spencer (M&S) has confirmed that personal customer data was stolen during the cyberattack that disrupted its retail operations last month, escalating a previously opaque incident into a confirmed data breach. The UK retail giant disclosed the development on May 13 through a message from CEO Stuart Machin and an accompanying customer FAQ, admitting … The post Marks & Spencer Confirms Customer Data Theft in April Cyberattack appeared first on CyberInsider.

Source: CyberInsider

May 13th, 2025 (about 1 month ago)

As US vuln-tracking falters, EU enters with its own security bug database

Source: TheRegister

May 13th, 2025 (about 1 month ago)

North Korea's TA406 Targets Ukraine for Intel

Description: The threat group's goal is to help Pyongyang assess risk to its troops deployed in Ukraine and to figure out if Moscow might want more.

Source: Dark Reading

May 13th, 2025 (about 1 month ago)

Türkiye-linked spy crew exploited a messaging app zero-day to snoop on Kurdish army in Iraq

Source: TheRegister

May 13th, 2025 (about 1 month ago)

Moldovan Police Arrest Suspect in €4.5M Ransomware Attack on Dutch Research Agency

Description: Moldovan law enforcement authorities have arrested a 45-year-old foreign man suspected of involvement in a series of ransomware attacks targeting Dutch companies in 2021. "He is wanted internationally for committing several cybercrimes (ransomware attacks, blackmail, and money laundering) against companies based in the Netherlands," officials said in a statement Monday. In conjunction with the

Source: TheHackerNews

May 13th, 2025 (about 1 month ago)

Türkiye Hackers Exploited Output Messenger Zero-Day to Drop Golang Backdoors on Kurdish Servers

Description: A Türkiye-affiliated threat actor exploited a zero-day security flaw in an Indian enterprise communication platform called Output Messenger as part of a cyber espionage attack campaign since April 2024. "These exploits have resulted in a collection of related user data from targets in Iraq," the Microsoft Threat Intelligence team said. "The targets of the attack are associated with the Kurdish

Source: TheHackerNews

May 13th, 2025 (about 1 month ago)

Panasonic IR Control Hub vulnerable to Unauthorised firmware loading

Description: IR Control Hub provided by Panasonic contains a vulnerability that may lead to loading of unauthorized firmware.

Source: Japan Vulnerability Notes (JVN)

May 13th, 2025 (about 2 months ago)

Threat and Vulnerability Intelligence Database

Example Searches:

	North Korean Konni APT Targets Ukraine with Malware to track Russian Invasion Progress Description: The North Korea-linked threat actor known as Konni APT has been attributed to a phishing campaign targeting government entities in Ukraine, indicating the threat actor's targeting beyond Russia. Enterprise security firm Proofpoint said the end goal of the campaign is to collect intelligence on the "trajectory of the Russian invasion." "The group's interest in Ukraine follows historical targeting Source: TheHackerNews May 13th, 2025 (about 1 month ago)
	Deepfake Defense in the Age of AI Description: The cybersecurity landscape has been dramatically reshaped by the advent of generative AI. Attackers now leverage large language models (LLMs) to impersonate trusted individuals and automate these social engineering tactics at scale. Let’s review the status of these rising attacks, what’s fueling them, and how to actually prevent, not detect, them. The Most Powerful Person on the Source: TheHackerNews May 13th, 2025 (about 1 month ago)
	Marks & Spencer admits cybercrooks made off with customer info Source: TheRegister May 13th, 2025 (about 1 month ago)
	Marks & Spencer Confirms Customer Data Theft in April Cyberattack Description: Marks & Spencer (M&S) has confirmed that personal customer data was stolen during the cyberattack that disrupted its retail operations last month, escalating a previously opaque incident into a confirmed data breach. The UK retail giant disclosed the development on May 13 through a message from CEO Stuart Machin and an accompanying customer FAQ, admitting … The post Marks & Spencer Confirms Customer Data Theft in April Cyberattack appeared first on CyberInsider. Source: CyberInsider May 13th, 2025 (about 1 month ago)
	As US vuln-tracking falters, EU enters with its own security bug database Source: TheRegister May 13th, 2025 (about 1 month ago)
	North Korea's TA406 Targets Ukraine for Intel Description: The threat group's goal is to help Pyongyang assess risk to its troops deployed in Ukraine and to figure out if Moscow might want more. Source: Dark Reading May 13th, 2025 (about 1 month ago)
	Türkiye-linked spy crew exploited a messaging app zero-day to snoop on Kurdish army in Iraq Source: TheRegister May 13th, 2025 (about 1 month ago)
	Moldovan Police Arrest Suspect in €4.5M Ransomware Attack on Dutch Research Agency Description: Moldovan law enforcement authorities have arrested a 45-year-old foreign man suspected of involvement in a series of ransomware attacks targeting Dutch companies in 2021. "He is wanted internationally for committing several cybercrimes (ransomware attacks, blackmail, and money laundering) against companies based in the Netherlands," officials said in a statement Monday. In conjunction with the Source: TheHackerNews May 13th, 2025 (about 1 month ago)
	Türkiye Hackers Exploited Output Messenger Zero-Day to Drop Golang Backdoors on Kurdish Servers Description: A Türkiye-affiliated threat actor exploited a zero-day security flaw in an Indian enterprise communication platform called Output Messenger as part of a cyber espionage attack campaign since April 2024. "These exploits have resulted in a collection of related user data from targets in Iraq," the Microsoft Threat Intelligence team said. "The targets of the attack are associated with the Kurdish Source: TheHackerNews May 13th, 2025 (about 1 month ago)
	Panasonic IR Control Hub vulnerable to Unauthorised firmware loading Description: IR Control Hub provided by Panasonic contains a vulnerability that may lead to loading of unauthorized firmware. Source: Japan Vulnerability Notes (JVN) May 13th, 2025 (about 2 months ago)