X-Industry

The education sector tops the list of industries with the most vulnerable cloud assets, APIs and web applications, according to a new study from CyCognito.  The security vendor analyzed a random sample of two million internet-exposed assets between January and June, simulating real-world attacker behavior including:

• Black-box pen testing using over 90,000 exploit modules, credential stuffing simulations, data exposure detection and more
• Dynamic application security testing to spot runtime web a

The Shadow Force group is a threat group that has been active since 2013, targeting corporations and organizations in South Korea.  Trend Micro revealed the first analysis report in September 2015, where it stated that a Korean media-related company had been attacked.  In March 2020, AhnLab published an analysis report on Operation Shadow Force.  It was introduced as a single campaign a there was the possibility of it being activies of an existing threat group.  However, no relevant threat group

Several Polish media and news websites were hit by distributed denial-of-service (DDoS) attacks that the government said could be the action of Russian hacking groups, the digitalization minister was quoted as saying on 18 May.  Warsaw has positioned itself as one of Ukraine's staunchest allies since Russia invaded the country, and Poland says it frequently faces Russian attempts to destabilize the situation in the country.  Moscow has consistently denied that it carries out hacking operations.