FBI confirms Lazarus hackers were behind $1.5B Bybit crypto heist
FBI has confirmed that North Korean hackers stole $1.5 billion from cryptocurrency exchange Bybit on Friday in the largest crypto heist recorded until now. The FBI also encouraged RPC node operators, exchanges, bridges, DeFi services, blockchain analytics firms, and other cryptocurrency service providers to block transactions originating from addresses used by North Korean hackers to launder the stolen assets. READ MORE...
It's not just Salt Typhoon: All China-backed attack groups are showcasing specialized offensive skills
Cyberattacks carried out by China-backed nation-state actors surged last year, showcasing technical advancements and specialized targeting in a broader escalation of the country's ability to infiltrate global critical infrastructure, CrowdStrike said in an annual threat report released Thursday. "After decades of investment into China's offensive capabilities, they're now on par with other world powers," Adam Meyers, senior vice president of counter adversary operations at CrowdStrike, said during a media briefing. READ MORE...
Hackers Can Crack Into Car Cameras in Minutes Flat
In the six minutes it takes to drive up to the window, order, and collect a No. 1 with cheese and extra fries, a vulnerability in more than two dozen car dash-camera models could allow threat actors to compromise the devices, allowing them access to everything from in-car conversations to detailed location data and much more. "We call this technique 'drivethru hacking,' says George Chen, one of the researchers behind the discovery. READ MORE...
U.S. Soldier Charged in AT&T Hack Searched "Can Hacking Be Treason"
A U.S. Army soldier who pleaded guilty last week to leaking phone records for high-ranking U.S. government officials searched online for non-extradition countries and for an answer to the question "can hacking be treason?" prosecutors in the case said Wednesday. The government disclosed the details in a court motion to keep the defendant in custody until he is discharged from the military. READ MORE...
Cisco Patches Vulnerabilities in Nexus Switches
Cisco informed customers on Wednesday that it has patched command injection and denial-of-service (DoS) vulnerabilities in some of its Nexus switches. One of the vulnerabilities, tracked as CVE-2025-20111, has been described as a high-severity issue related to the incorrect handling of some Ethernet frames. The issue impacts the health monitoring diagnostics component of Nexus 3000 and 9000 series switches - in the case of 9000 series products, they are affected only in standalone NX-OS mode. READ MORE...
VSCode extensions with 9 million installs pulled over security risks
Microsoft has removed two popular VSCode extensions, 'Material Theme - Free' and 'Material Theme Icons - Free,' from the Visual Studio Marketplace for allegedly containing malicious code. The two extensions are very popular, having been downloaded nearly 9 million times in total, with users now receiving alerts in VSCode that the extensions have automatically been disabled. The publisher, Mattia Astorino (aka equinusocio), has multiple extensions on the VSCode marketplace. READ MORE...
New Anubis Ransomware Could Pose Major Threat to Organizations
Threat Intelligence firm Kela warns of a new ransomware group called Anubis operating as a RaaS service with an extensive array of options for affiliates. The group emerged as recently as late 2024, although the researchers believe that its members have experience in ransomware, both malware and operations. Information on Anubis comes from an analysis of the group's dark web footprint rather than code analysis of the ransomware. READ MORE...
Wallbleed vulnerability unearths secrets of China's Great Firewall 125 bytes at a time
Smart folks investigating a memory-dumping vulnerability in the Great Firewall of China (GFW) finally released their findings after probing it for years. The eight-strong team of security pros and academics found the data-leaking flaw, and started using it to learn about the GFW's inner workings in October 2021. It named the flaw Wallbleed after the Heartbleed disaster in OpenSSL. To clear things up right from the start, this is no Heartbleed. READ MORE...
Nearly 3K Ivanti Connect Secure instances vulnerable to critical flaw
Approximately 2,850 IP addresses are vulnerable to CVE-2025-22467, a critical stack buffer-overflow vulnerability that affects Ivanti Connect Secure VPNs, according to a post on X by the Shadowserver Foundation. Ivanti disclosed and patched CVE-2025-22467 on Feb. 11 and said it was not aware of any exploitation of the vulnerability prior to the public disclosure. Exploitation of the critical flaw can allow a remote authenticated attacker to achieve remote code execution. READ MORE...
Stealthy Linux 'Auto-color' Backdoor Paints US Institutions With Malware
Attackers are wielding a novel Linux backdoor against the education and public sectors in the US and Asia that demonstrates particularly stealthy ways to avoid both detection and deletion from a system. The malware's evasion tactics are similar to (and even more advanced than) those of a previously discovered and nearly impossible to detect Linux malware called Symbiote. Researchers from Palo Alto Networks Unit 42 discovered the latest malware, which they dubbed "Auto-color." READ MORE...
- ...in 1860, a campaigning Abraham Lincoln visits the studio of Mathew Brady, sitting for a portrait that would go on to become the first-ever photograph of a U.S. President.
- ...in 1902, author John Steinbeck ("Of Mice and Men", "The Grapes of Wrath") is born in Salinas, CA.
- ...in 1942, the U.S. Navy's first aircraft carrier, the USS Langley, is sunk by Imperial Japanese Navy Air Service forces near Java in the South Pacific.
- ...in 2015, "Star Trek" actor Leonard Nimoy dies at the age of 83 in Los Angeles, CA. He lived long and prospered...
