monitoring and detection – Experimental News Clipping Site

The Register: Google warns China-linked spies lurking in ‘numerous’ enterprises since March

Sep 24, 2025

—

by

Source URL: https://www.theregister.com/2025/09/24/google_china_spy_report/ Source: The Register Title: Google warns China-linked spies lurking in ‘numerous’ enterprises since March Feedly Summary: Mandiant CTO anticipates ‘hearing about this campaign for the next one to two years’ Unknown intruders – likely China-linked spies – have broken into “numerous" enterprise networks since March and deployed backdoors, providing access for their…

The Register: Former FinWise employee may have accessed nearly 700K customer records

Sep 15, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/15/finwise_insider_data_breach/ Source: The Register Title: Former FinWise employee may have accessed nearly 700K customer records Feedly Summary: Bank says incident went undetected for over a year before discovery in June A US fintech biz is writing to nearly 700,000 customers because a former employee may have accessed or acquired their data after leaving…

Unit 42: Your Connection, Their Cash: Threat Actors Misuse SDKs to Sell Your Bandwidth

Aug 21, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://unit42.paloaltonetworks.com/attackers-sell-your-bandwidth-using-sdks/ Source: Unit 42 Title: Your Connection, Their Cash: Threat Actors Misuse SDKs to Sell Your Bandwidth Feedly Summary: A campaign leverages CVE-2024-36401 to stealthily monetize victims’ bandwidth where legitimate software development kits (SDKs) are deployed for passive income. The post Your Connection, Their Cash: Threat Actors Misuse SDKs to Sell Your Bandwidth…

The Register: Ransomware crews don’t care about your endpoint security – they’ve already killed it

Aug 14, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/08/14/edr_killers_ransomware/ Source: The Register Title: Ransomware crews don’t care about your endpoint security – they’ve already killed it Feedly Summary: Some custom malware, some legit software tools At least a dozen ransomware gangs have incorporated kernel-level EDR killers into their malware arsenal, allowing them to bypass almost every major endpoint security tool on…

Unit 42: Behind the Clouds: Attackers Targeting Governments in Southeast Asia Implement Novel Covert C2 Communication

Jul 14, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://unit42.paloaltonetworks.com/windows-backdoor-for-novel-c2-communication/ Source: Unit 42 Title: Behind the Clouds: Attackers Targeting Governments in Southeast Asia Implement Novel Covert C2 Communication Feedly Summary: CL-STA-1020 targets Southeast Asian governments using a novel Microsoft backdoor we call HazyBeacon. It misuses AWS Lambda URLs for C2. The post Behind the Clouds: Attackers Targeting Governments in Southeast Asia Implement…

Slashdot: Oracle Tells Clients of Second Recent Hack, Log-In Data Stolen

Apr 3, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://developers.slashdot.org/story/25/04/03/198224/oracle-tells-clients-of-second-recent-hack-log-in-data-stolen?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Oracle Tells Clients of Second Recent Hack, Log-In Data Stolen Feedly Summary: AI Summary and Description: Yes Summary: The recent report highlights a significant cybersecurity breach at Oracle, where hackers accessed client login credentials. This incident is notable for security and compliance professionals given its implications for data protection…

Tag: monitoring and detection

The Register: Google warns China-linked spies lurking in ‘numerous’ enterprises since March

The Register: Former FinWise employee may have accessed nearly 700K customer records

Unit 42: Your Connection, Their Cash: Threat Actors Misuse SDKs to Sell Your Bandwidth

The Register: Ransomware crews don’t care about your endpoint security – they’ve already killed it

Unit 42: Behind the Clouds: Attackers Targeting Governments in Southeast Asia Implement Novel Covert C2 Communication

Slashdot: Oracle Tells Clients of Second Recent Hack, Log-In Data Stolen