Topic: state-sponsored hacking
-
Microsoft Office Patch: Urgent Fix for Russian-State Hackers
A Russian state-linked hacking group (APT28/Fancy Bear) rapidly exploited a critical Microsoft Office vulnerability (CVE-2026-21509) within two days of its patch, compromising diplomatic, transport, and defense organizations in multiple countries. The campaign was exceptionally stealthy, using en...
Read More » -
How 'Murky Panda' Hackers Breach Cloud Customers
A Chinese state-sponsored hacking group known as Murky Panda or Silk Typhoon exploits trusted cloud service relationships to infiltrate networks of government, tech, and academic organizations, particularly in North America. The group uses sophisticated tactics such as compromising cloud provider...
Read More » -
US Offers $10M Reward for Russian FSB Hackers Info
The U.S. State Department is offering up to $10 million for information on three Russian FSB officers accused of orchestrating cyberattacks against American critical infrastructure, including government bodies and energy firms. These officers, part of the FSB's Center 16, targeted over 500 energy...
Read More » -
China-Linked Hackers Trained at Cisco Academy
Cisco's Networking Academy, a global IT training program, has been linked to state-sponsored cyberespionage, as individuals associated with the Chinese hacking group Salt Typhoon appear to have participated in its educational contests. The foundational networking skills taught by the academy may ...
Read More » -
US Treasury Sanctions North Korea for IT Worker Malware Plot
Treasury has imposed sanctions on a North Korean cyber operative involved in a sophisticated scheme using fake identities to infiltrate American companies and fund Pyongyang’s weapons programs.** The move targets **Song Kum Hyok**, a key member of the **Andariel hacking group**, known for orchest...
Read More » -
Washington Post email hack exposes journalists' accounts
A sophisticated cyberattack targeted Washington Post journalists, compromising email accounts of reporters covering national security, economic policy, and China, with evidence pointing to a state-sponsored hacking group. Experts suspect advanced persistent threat (APT) groups linked to China, kn...
Read More » -
Millions of PornHub Users' Data Stolen in Extortion Hack
U.S. border agencies are expanding surveillance by deploying small drones operationally and enhancing cybersecurity to monitor employees, amid investigations into leaks. Major data breaches include the theft of over 200 million user records from PornHub by hackers and the rise of AI tools like Ha...
Read More » -
Cisco UCCX Flaws Fixed, November 2025 Patch Tuesday Outlook
Cisco has released critical patches for UCCX vulnerabilities (CVE-2025-20358 and CVE-2025-20354) that could allow attackers to bypass authentication and gain root access, urging immediate updates. New threats include active exploitation of CVE-2025-48703 in Control Web Panel, malware using LLMs t...
Read More » -
Critical SonicWall SonicOS Flaw Lets Hackers Crash Firewalls
SonicWall has issued an urgent warning about a high-severity security flaw (CVE-2025-40601) in its SonicOS SSLVPN service, which could allow attackers to crash affected firewalls via a denial-of-service attack, impacting Gen7 and Gen8 hardware and virtual firewalls. The company states there is no...
Read More »