The United States Coast Guard (USCG) published its final rule to introduce cybersecurity requirements for US-flagged vessels, along with port/terminal facilities and outer continental shelf facilities.
The rule takes effect from 16 July 2025 and will commence a 24-month period to achieve full compliance with the standards required in the rule.[1]
Key points:
Threat actors have been observed concealing malicious code in images to deliver malware, such as VIP Keylogger and 0bj3ctivity Stealer, as part of separate campaigns. In both campaigns, attackers hid malicious code in photos uploaded to archive[.]org, a file-hosting website, and used the same .NET loader to install their final payloads. The starting point is a phishing email that masquerades as invoices and purchase orders to trick recipients into opening malicious attachments, such as Microsoft
The US Cybersecurity and Infrastructure Security Agency (CISA) has warned federal agencies about three flaws allowing hackers to use Mitel MiCollab and Oracle WebLogic Server on its Known Exploited Vulnerabilities catalog (KEV). This security defect will enable attackers to perform unauthorized administrative actions and access user and network information.
Currently, there is no information on how these flaws are exploited in real-world attacks, who may be exploiting them, or the targets of th
Polish game developer Big Cheese Studio was hit by a hacker attack early on 24 January, its management confirmed to the Polish Press Agency (PAP).
The attack happened around 0400 GMT and the company's website was still down as of 1123 GMT. Big Cheese Studio has taken security measures and will make an official statement later on Friday, PAP wrote. It also reported, citing users on social media platform X, that the hackers had gained access to the company's game code systems and personal data
The payment card giant MasterCard just fixed a glaring error in its domain name server settings that could have allowed anyone to intercept or divert Internet traffic for the company by registering an unused domain name. Customers are not happy. The misconfiguration persisted for nearly five years until a security researcher spent $300 to register the domain and prevent it from being grabbed by cybercriminals.
Link to full article: TR-25-026-003_Mastercard.pdf
Character AI, a platform that lets users engage in roleplay with AI chatbots, has filed a motion to dismiss a case brought against it by the parent of a teen who committed suicide after allegedly becoming hooked on the company’s technology. In October, Megan Garcia filed a lawsuit against Character AI in the US District Court for the Middle District of Florida, over the death of her son, Sewell Setzer III. According to Garcia, her 14-year-old developed an emotional attachment to a chatbot on C
The previous six months have seen heightened activity regarding new and emerging ransomware operations. Across the tail end of 2024 and into 2025, researchers have seen the rise of groups such as FunkSec, Nitrogen,, and Termite. In addition, we have seen the return of Cl0p and a new version of LockBit (aka LockBit 4.0).
Within this period of accelerated activity, the Ransomware-as-a-Service offerings HellCat and Morpheus have gained additional momentum and notoriety. Operators behind HellCat, in
In the US, the White House recently announced an Interim Final Rule on Artificial Intelligence Diffusion, a comprehensive framework designed to ensure US leadership in artificial intelligence (AI) while mitigating the risks posed by adversaries misusing advanced AI technologies. The announcement underscores the growing recognition of AI as a "Great Power" technology essential for national security, economic strength, and global influence.
The outgoing administration's fact sheet highlighted AI's
Cyberattacks targeting healthcare organizations are rising, and the financial and operational toll they take is growing. A recent report from Proofpoint found that 92% of healthcare organizations reported experiencing a cyberattack in 2024, up from 88% in 2023, while the average cost of the most expensive attack was $4.7 million. While safeguarding sensitive patient data remains a top concern, malicious actors leverage artificial intelligence (AI) and machine learning technologies to make threat
Maybe they should have called it DeepFake, or DeepState, or better still Deep Selloff. Or maybe the other obvious deep thing that the indigenous AI vendors in the United States are standing up to their knees in right now. Call it what you will, but the DeepSeek foundation model has in one short week turned the AI world on its head, proving once again that Chinese researchers can make inferior hardware run a superior algorithm and get results that are commensurate with the best that researchers
Our colleagues at Sentinel Labs have again provided expert collection and analysis on the 2024 macOS Malware. Across 2024, researchers saw a sharp rise in malware campaigns aimed at macOS users in the enterprise. From infostealers masquerading as business and productivity apps to sophisticated modular backdoors, not to mention plenty of APT activity, threat actors were busier than ever developing and deploying malware to compromise organizations and steal sensitive data.
Linl to full report:
Artificial Intelligence (AI) has quickly emerged as one of the most transformative digital technologies, and Israel has pioneered its use in military settings. The Israeli Ministry of Defense (IMOD) recently established a dedicated AI and Autonomy Administration under its Directorate of Defense Research & Development (DDR&D), also known as MAFAT. This new body will drive innovation in AI and autonomous systems across all military branches, aiming to maintain the current operational advantages of
Meta will remove third-party fact-checkers from its Facebook and Instagram social media platforms as it wants to embrace free speech. They intend to replace fact checkers with the accuracy of messages being monitored by user-generated community notes. Meta's current fact-checking program, introduced in 2016, refers to posts that appear false or misleading to independent organizations to assess their credibility.
In a recent video, Meta’s Chief Executive Mark Zuckerberg said third-party moderator
Businesses in the UK are set to be protected by a new ransomware ban to address the threat of cybercrime, which is estimated to cost the UK economy billions of pounds every year. The proposed legislation follows a series of serious ransomware attacks on the National Health Service (NHS), the British Library and the Royal Mail, that have caused severe disruption and cost millions in recovery costs. The intention is to make public sector and infrastructure organizations less appealing as targe
This is a follow-up analysis of a previous blog about a zero-day exploit. The FortiGuard Incident Response (FGIR) team examined how remote attackers exploited multiple vulnerabilities in an appliance to gain control of a customer’s system. At the end of that blog, analysts revealed that the remote attacker had deployed a rootkit (a loadable kernel module, sysinitd.ko) and a user-space binary file (sysinitd) on the affected system by executing a shell script (Install.sh). Additionally, to establi
Our friends from German media is reporting that the new US administration has dismissed all members of various advisory bodies not appointed by the government, bringing an investigation into the devastating cyber-attack on US providers to an abrupt halt. This was reported by the news agency Reuters. According to trusted sources, the investigation into the attack by the Cyber Safety Review Board has been “killed,” as reported by Reuters. US Senator Ron Wyden-D speaks of a “massive gift to the C
A potentially catastrophic ransomware attack on Costa Rica’s largest oil refinery last year was the first real-world test of the US State Department’s new rapid response tool for cybersecurity incidents, according to a top diplomat. The department’s cyber bureau tapped the Foreign Assistance Leveraged for Cybersecurity Operational Needs, or FALCON, one of several US initiatives developed to bolster allies and infuse global digital norms with American values. “Our goal was to provide swift and
Cybersecurity researchers have reported that artificial intelligence (AI) assisted with ransomware called FunkSec, which entered the market in late 2024 and claimed more than 85 victims. "The group uses double extortion tactics, combining data theft with encryption to pressure victims into paying ransoms," Check Point Research said in a new report from The Hacker News. "Notably, FunkSec demanded unusually low ransoms, sometimes as little as $10,000, and sold stolen data to third parties at reduc
A federal grand jury has indicted a 51-year-old church pastor on 26 counts of fraud, after allegedly using his position to deceive victims into investing in a cryptocurrency investment scam. That would seem unusual, but what is even more bizarre is that the pastor alleged to be behind the scheme claims that the inspiration for the project came to him in a dream. Francier Obando Pinillo, of Miami, Florida, is alleged to have exploited his position at a Spanish-language church in Pasco, Washingt
Silverfort has discovered that a misconfiguration can bypass an Active Directory Group Policy designed to disable NTLMv1, allowing NTLMv1 authentications to persist. Microsoft announced the full decommission of NTLMv1 from Windows 2025. Unified Identity Security company Silverfort has discovered a security vulnerability involving a misconfiguration in Active Directory. This vulnerability allows NTLMv1 authentication to persist despite attempts to disable it through Group Policy.
NTLMv1 is an o
