President Donald Trump signed a bill that temporarily restores key cybersecurity laws, including the 2015 Cybersecurity and Infrastructure Security Act and the State and Local Cybersecurity Grant Program. This short-term renewal helps prevent immediate cyber threats, but Congress must secure a long-term reauthorization to ensure continuous protection. #CybersecurityAct2015 #StateLocalCybersecurityGrant…
Tag: CRITICAL INFRASTRUCTURE
Ransomware attacks increased by 30% in October, reaching the second-highest level on record with 623 incidents. The Qilin group remained the most active threat actor, exploiting critical vulnerabilities and targeting key industries worldwide. #Qilin #LockBit #RansomHub #Medusa…
The UK government has introduced the Cyber Security and Resilience Bill to enhance national security and protect critical infrastructure, including the regulation of managed service providers and critical suppliers. The legislation incorporates updates inspired by the EU’s NIS2 directive, emphasizing incident reporting, supply chain management, and stronger enforcement powers. #NIS2 #CyberSecurityBill…
This bulletin covers the latest developments in cybersecurity, including new threats, legal measures, and technological defenses. It highlights ongoing battles between hackers and security defenders across various sectors and regions. #IntelDataBreach #OWASP #MetaPhishing #RussianDrones…
![Cybersecurity News | Daily Recap [12 Nov 2025]](https://www.hendryadrian.com/tweet/image/DailyRecap.png "Cybersecurity News | Daily Recap [12 Nov 2025]")
Daily Recap, Microsoft patched 63 flaws including a Windows kernel zero-day and released multiple out-of-band updates and ESU fixes, while other vendors issued patches for Intel, Adobe, Ivanti, Synology, SAP, and more amid ongoing exploitation and zero-days in Citrix, Cisco ISE, and Zoom. The report also covers phishing kits, Android and WhatsApp malware, Qilin ransomware activity, North Korea and China-related espionage, and industry events and guidance on AI supply chain attacks.
#Triofox #Citrix #CiscoISE #Zoom #Qilin #FantasyHub #Maverick #NorthKorea #China #AI_Supply_Chain #Pwn2Own
Russian authorities are limiting mobile internet access for citizens returning from abroad to prevent Ukrainian drones from using domestic SIM cards for navigation. These measures, often justified as wartime security efforts, have caused widespread outages and are part of broader legal and security policy changes. #UkrainianDrones #FSB #Ulyanovsk…
Mihoko Matsubara, an expert in global cybersecurity strategy, discusses differences in cyber threat activity between Japan, Russia, China, and Western countries, emphasizing Japan’s solitary hackers and its cultural factors. She highlights lessons from Ukraine’s resilience against cyberattacks, the strategic behavior of Russia and China, and explores the future challenges posed by…
A ransomware attack on Synnovis in June 2024 led to the theft of patient data and disrupted services across several NHS hospitals in London. The incident was linked to the Qilin ransomware group, and affected organizations are now working to assess the impact of the breach. #Qilin #Synnovis #NHS #ransomwareattack
The UK has implemented new legislation to strengthen cybersecurity protections for critical sectors such as hospitals, energy, water, and transport, aiming to prevent costly cyberattacks. The Cyber Security and Resilience Bill updates existing regulations, mandates cybersecurity standards, and enhances response capabilities for organizations involved in essential services. #UKCyberBill #CriticalInfrastructure #NHS #WaterSecurity #EnergyProtection
The UK government introduces the Cyber Security and Resilience Bill to enhance protection of critical infrastructure and services against sophisticated cyber threats. The Cyble report highlights Europe’s rising cyberattack incidents, emphasizing the need for unified and proactive cybersecurity strategies. #CyberSecurityBill #EuropeCyberThreats…
Daily Recap, Widespread ClickFix phishing targets hotel systems alongside the reappearance of GlassWorm on Open VSX and GitHub, with LANDFALL Android malware exploiting a Samsung 0-day in WhatsApp images. The report also covers runc container flaws, OWASP Top 10 updates, and rising enterprise risks across IoT and mobile devices.
#ClickFix #GlassWorm #LANDFALL #Samsung0day #OWASPTop10 #IoT #IlluminateFine #TISZABreach
A Russian national, Aleksey Volkov, is preparing to plead guilty for his role as an initial access broker in Yanluowang ransomware attacks that targeted U.S. organizations, earning him millions in ransom payments. This case highlights the interconnectedness of hacking groups, cryptocurrency laundering, and the threat to critical infrastructure. #Yanluowang #AlekseyVolkov #LockBit…
Kyiv and other Ukrainian cities experienced extensive blackouts and communication disruptions following a massive missile and drone attack on Ukraine’s energy infrastructure. Russian cyber and kinetic operations aim to destabilize Ukraine’s critical systems, especially as winter approaches. #Sandworm #EnergyInfrastructure…
![Threat Research | Weekly Recap [09 Nov 2025]](https://www.hendryadrian.com/tweet/image/WeeklyRecap.png "Threat Research | Weekly Recap [09 Nov 2025]")
Cybersecurity Threat Research ‘Weekly’ Recap. Adversaries persist with phishing, credential theft, supply-chain compromises, and AI-enabled threats, targeting individuals, organizations, and critical infrastructure across multiple sectors. The report highlights notable campaigns, new backdoors, ransomware evolutions, vulnerabilities, and the increasing use of AI for malware development, detection evasion, and incident response improvements.
#Tycoon 2FA #Fake DMCA #RaccoonO365 #Booking.com “I Paid Twice” #AdE crypto-tax phishing #Bank of Italy phishing #Remcos #SleepyDuck #Gootloader #LANDFALL #Fantasy Hub #Cephalus #Midnight ransomware #DragonForce #MuddyWater #SesameOp #OpenAI C2 #Balancer #Great Firewall
Arctic Wolf Labs discovered a Brazilian-origin Loader-as-a-Service called Caminho that uses LSB steganography to hide .NET loaders inside images hosted on legitimate platforms and delivers diverse payloads including REMCOS RAT, XWorm, and Katz Stealer. The multi-stage campaign uses spear-phishing with obfuscated JS/VBS and PowerShell stages, in-memory .NET loading and process injection,…