$ page 11/47

US nationals jailed for operating fake remote worker laptop farms for North Korea

Two US nationals have been jailed for helping North Korean IT workers infiltrate over 100 American firms, funneling millions to the DPRK's weapons pro

6 min readApr 17

ZionSiphon malware designed to sabotage water treatment systems

A new proof-of-concept malware, ZionSiphon, demonstrates how attackers can sabotage water treatment plants by manipulating industrial control systems.

2 min readApr 17

Ghost breaches: How AI-mediated narratives have become a new threat vector

Three incidents. No actual breaches. Full-scale crisis response. AI hallucinations are creating a new threat vector that most organizations are unprep

7 min readApr 17

ThreatsDay bulletin: A deep dive into the Defender 0-day, SonicWall attacks, and a 17-year-old Excel flaw

This week’s threat bulletin is a heavy one. We analyze the critical Microsoft Defender 0-day, a massive SonicWall brute-force campaign, and a 17-year-

6 min readApr 17

OpenAI's new cyber model signals a new front in the AI security arms race

OpenAI's GPT-5.4-Cyber, a model for defenders, enters the field after Anthropic's offensive AI reveal, escalating the AI-driven cybersecurity arms rac

6 min readApr 17

The digital front: Analyzing Iran's cyber warfare capabilities in geopolitical conflict

A deep dive into Iran's state-sponsored cyber capabilities, analyzing potential attack scenarios, target sectors, and the critical steps businesses mu

6 min readApr 17

When drones attack: Analyzing the cyber-physical threat to critical infrastructure

A deep-dive into the May 2024 drone attack on Russia's Afipsky oil refinery, analyzing it as a case study in converged cyber-physical warfare.

6 min readApr 17

Microsoft Defender's 'RedSun' zero-day: A researcher's protest and a threat to Windows systems

A researcher's protest exposed a critical zero-day in Microsoft Defender, allowing attackers full system control. Here's the technical breakdown and h

7 min readApr 17

Attempted breach of Swedish power plant highlights escalating cyber front in European energy sector

A failed 2022 cyberattack on a Swedish power plant, disclosed by officials, reveals the escalating threat pro-Russian actors pose to European critical

6 min readApr 16

Over 100 malicious Chrome extensions found stealing data and creating backdoors

A detailed analysis of a coordinated campaign where over 100 malicious Chrome extensions compromised 4 million users, stealing data and creating backd

6 min readApr 16

Sweden's attribution of energy sector attack highlights rising threat to critical infrastructure

Sweden publicly blamed a pro-Russian group for a 2022 cyberattack on a heating plant, a significant move signaling a new era of hybrid threats.

6 min readApr 16

We’re only seeing the tip of the chip-smuggling iceberg

Recent federal indictments reveal a vast shadow network smuggling AI chips to China. A deeper look shows why enforcement must move beyond the border.

6 min readApr 16