Latest News Articles
--- TLP:CLEAR ---
News
− Cyber Insights 2025: Social Engineering Gets AI Wings
Business resilience must be the ultimate purpose of all the security controls and processes we employ, because we will never conclusively defeat or protect ourselves from social engineering.
https://www.securityweek.com/cyber-insights-2025-social-engineering-gets-ai-wings/− The J-Magic Show: Magic Packets and Where to find them
The Black Lotus Labs team at Lumen Technologies has been tracking the use of a backdoor attack tailored for use against enterprise-grade Juniper routers. This backdoor is opened by a passive agent that continuously monitors for a “magic packet,” sent by the attacker in TCP traffic.
https://blog.lumen.com/the-j-magic-show-magic-packets-and-where-to-find-them/− Under lock and key: Protecting corporate data from cyberthreats in 2025
Data breaches can cause a loss of revenue and market value as a result of diminished customer trust and reputational damage
https://www.welivesecurity.com/en/business-security/state-aligned-apt-groups-increasingly-deploying-ransomware/Vulnerabilities
−Building Automation Protocols Increasingly Targeted in OT Attacks:
Industrial automation protocols continue to be the most targeted in OT attacks, but building automation systems have been increasingly targeted.
https://www.forescout.com/resources/2024-global-threat-roundup-report/− Salt Typhoon: An Analysis of Vulnerabilities Exploited by this State-Sponsored Actor
Salt Typhoon, a state-sponsored actor linked to the People’s Republic of China, has breached at least nine U.S.-based telecommunications companies with the intent to target high profile government and political figures. Tenable Research examines the tactics, techniques and procedures of this threat actor.
https://www.tenable.com/blog/salt-typhoon-an-analysis-of-vulnerabilities-exploited-by-this-state-sponsored-actor− NCSC Advisory Critical Vulnerability in SonicWall
Pre-authentication deserialization of untrusted data vulnerability has been identified in the SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC), which in specific conditions could potentially enable a remote unauthenticated attacker to execute arbitrary OS commands.
https://www.ncsc.gov.ie/pdfs/2501230151_%20Critical_Vulnerability_in_SonicWall.pdf/− CISA Warns of Old jQuery Vulnerability Linked to Chinese APT
CISA has added the JQuery flaw CVE-2020-11023, previously linked to APT1, to its Known Exploited Vulnerabilities (KEV) catalog.
https://www.securityweek.com/cisa-warns-of-old-jquery-vulnerability-linked-to-chinese-apt/Community News
− Irish-language dictionary of computer science terms.
A Irish-language dictionary of computer science terms has been completed and made public by Jeffrey Sardina. as a part of his PhD thesis
https://jeffrey-sardina.github.io/Focloir-Trachtais/--- TLP:CLEAR ---