Topic: defense recommendations
-
Microsoft GoAnywhere Flaw Fuels Ransomware Attacks
A critical vulnerability (CVE-2025-10035) in Fortra's GoAnywhere MFT platform is being exploited by ransomware attackers, allowing remote access without user interaction. The cybercrime group Storm-1175, linked to Medusa ransomware, is actively using this flaw to gain initial access, deploy remot...
Read More » -
How 'Murky Panda' Hackers Breach Cloud Customers
A Chinese state-sponsored hacking group known as Murky Panda or Silk Typhoon exploits trusted cloud service relationships to infiltrate networks of government, tech, and academic organizations, particularly in North America. The group uses sophisticated tactics such as compromising cloud provider...
Read More » -
Scattered Spider Targets VMware ESXi in Latest Hacking Wave
A hacking group, Scattered Spider, is targeting VMware ESXi hypervisors via social engineering, compromising U.S. corporations by impersonating employees to gain network access. The attackers exploit privileged accounts to control VMware vCenter, enabling SSH on ESXi hosts and executing disk-swap...
Read More » -
China's ORB Network Expands Cyber Espionage to US & Asia
China-linked cyber espionage operations are using a botnet called "LapDogs," comprising over 1,000 compromised SOHO routers and IoT devices, to target organizations in the U.S. and Asia while masking malicious activity. The campaign employs a custom backdoor, "ShortLeash," and spoofed TLS...
Read More »
