Tag: critical infrastructure
-
The Register: Beijing went to ‘EggStreme’ lengths to attack Philippines military, researchers say
Source URL: https://www.theregister.com/2025/09/11/eggstreme_malware_china_philippines/ Source: The Register Title: Beijing went to ‘EggStreme’ lengths to attack Philippines military, researchers say Feedly Summary: Ovoid-themed in-memory malware offers a menu for mayhem ‘EggStreme’ framework looks like the sort of thing Beijing would find handy in its ongoing territorial beefs Infosec outfit Bitdefender says it’s spotted a strain of in-memory…
-
The Register: Salt Typhoon used dozens of domains, going back five years. Did you visit one?
Source URL: https://www.theregister.com/2025/09/08/salt_typhoon_domains/ Source: The Register Title: Salt Typhoon used dozens of domains, going back five years. Did you visit one? Feedly Summary: Plus ties to the Chinese spies who hacked Barracuda email gateways Security researchers have uncovered dozens of domains used by Chinese espionage crew Salt Typhoon to gain stealthy, long-term access to victim…
-
The Register: US puts $10M bounty on three Russians accused of attacking critical infrastructure
Source URL: https://www.theregister.com/2025/09/04/us_10m_bounty_fsb_attackers/ Source: The Register Title: US puts $10M bounty on three Russians accused of attacking critical infrastructure Feedly Summary: Seven-year-old Cisco vuln that remains inexplicably unpatched is their way in The US State Department has put a $10 million bounty on the heads of three Russians accused of being intelligence agents hacking America’s…
-
Embrace The Red: Windsurf MCP Integration: Missing Security Controls Put Users at Risk
Source URL: https://embracethered.com/blog/posts/2025/windsurf-dangers-lack-of-security-controls-for-mcp-server-tool-invocation/ Source: Embrace The Red Title: Windsurf MCP Integration: Missing Security Controls Put Users at Risk Feedly Summary: Part of my default test cases for coding agents is to check how MCP integration looks like, especially if the agent can be configured to allow setting fine-grained controls for tools. Sometimes there are basic…
-
The Register: If you thought China’s Salt Typhoon was booted off critical networks, think again
Source URL: https://www.theregister.com/2025/08/28/china_salt_typhoon_alert/ Source: The Register Title: If you thought China’s Salt Typhoon was booted off critical networks, think again Feedly Summary: 13 governments sound the alarm about ongoing unpleasantness China’s Salt Typhoon cyberspies continue their years-long hacking campaign targeting critical industries around the world, according to a joint security alert from cyber and law…
-
Slashdot: Defense Department Reportedly Relies On Utility Written by Russian Dev
Source URL: https://tech.slashdot.org/story/25/08/27/2026245/defense-department-reportedly-relies-on-utility-written-by-russian-dev?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Defense Department Reportedly Relies On Utility Written by Russian Dev Feedly Summary: AI Summary and Description: Yes Summary: The article highlights concerns over the fast-glob utility, widely used in Node.js applications, particularly within U.S. Department of Defense systems. Maintained by a Russian developer with ties to Yandex, the lack…
-
The Register: Microsoft can’t guarantee data sovereignty – OVHcloud says ‘We told you so’
Source URL: https://www.theregister.com/2025/08/27/ovhcloud_interview/ Source: The Register Title: Microsoft can’t guarantee data sovereignty – OVHcloud says ‘We told you so’ Feedly Summary: French provider seizes on Redmond’s admission that US law could override local protections Interview European cloud provider OVHcloud has long warned about the risks of relying on foreign tech giants for critical infrastructure –…
-
Cloud Blog: Google named a Leader in IDC MarketScape: Worldwide Incident Response 2025 Vendor Assessment
Source URL: https://cloud.google.com/blog/products/identity-security/google-named-a-leader-in-idc-marketscape-worldwide-incident-response-2025-vendor-assessment/ Source: Cloud Blog Title: Google named a Leader in IDC MarketScape: Worldwide Incident Response 2025 Vendor Assessment Feedly Summary: Today’s cybersecurity landscape requires partners with expertise and resources to handle any incident. Mandiant, a core part of Google Cloud Security, can empower organizations to navigate critical moments, prepare for future threats, build…