Category: Cybersecurity

  • Blog
  • Category: Cybersecurity
Tens of Thousands of Fortinet Firewalls Reportedly Compromised in Global Cyberattack Campaign

Tens of Thousands of Fortinet Firewalls Reportedly Compromised in Global Cyberattack Campaign

A large-scale cybercriminal operation has allegedly compromised tens of thousands of Fortinet firewalls and VPN devices used by major organizations around the world, according to findings published by two cybersecurity firms. The campaign, which researchers have named FortiBleed, is still ongoing and appears to differ from many previous attacks targeting Fortinet infrastructure. Rather than exploiting

Cybersecurity Experts Warn US Ban on Anthropic’s Most Advanced AI Models Could Undermine Digital Defense Efforts

Cybersecurity Experts Warn US Ban on Anthropic’s Most Advanced AI Models Could Undermine Digital Defense Efforts

A coalition of cybersecurity professionals, including several of the industry’s most respected figures, has published an open letter urging the U.S. government to reverse its export restrictions on Anthropic’s Fable and Mythos artificial intelligence models. The group argues that the decision effectively removes some of the most capable AI-powered cybersecurity tools from the hands of

Images weaponised in latest supply chain attack

Images weaponised in latest supply chain attack

A recent investigation by cybersecurity firm Phylum has uncovered a series of malicious packages within the npm registry that were disguised as legitimate software, highlighting the rising sophistication of supply chain attacks targeting open-source ecosystems. These packages were identified on July 13, 2024, and contained embedded command and control (C2) functionalities hidden within image files,

NPM supply chain attack uses Ethereum blockchain

NPM supply chain attack uses Ethereum blockchain

Checkmarx Researchers Uncover Unique Supply Chain Attack in NPM Using Ethereum Blockchain Checkmarx researchers have identified a distinctive supply chain attack within the NPM ecosystem, leveraging the Ethereum blockchain for its operations. The malicious package, named “jest-fet-mock,” employs multi-platform malware and utilizes Ethereum smart contracts for command-and-control (C2) activities, marking a new convergence between blockchain