A rapid response to the increasing threats against email infrastructure was provided by the Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the National Security Agency (NSA), the Australian Cyber Security Centre (ACSC) and the Canadian Centre for Cyber Security . The document, titled ” Microsoft Exchange Server Security Best Practices ,” emphasizes proactive hardening measures in the event of persistent attacks on these critical systems, which handle sensitive business communications. It is essential to prioritize thorough maintenance of security updates and patches to adopt a prevention-first approach, as highlighted in the guide that emphasizes the importance of this strategy. A

The Russian programming team behind the Medusa malware has been arrested by officials from the Russian Interior Ministry, with the support of police in the Astrakhan region. According to investigators, three young IT specialists were involved in the development, distribution, and implementation of viruses designed to steal digital data and breach security systems. Irina Volk reported this on the Telegram channel , attaching a video of the arrests. Investigators have determined that the group’s activities began approximately two years ago. At the time, the suspects had created and published on hacker forums a program called Medusa, capable of stealing user accounts, cryptocurrency

A new open-source tool, known as HikvisionExploiter, was recently updated. This tool is designed to automate cyberattacks against vulnerable Hikvision IP cameras . Designed to facilitate penetration testing operations, this tool highlights how unprotected devices can be easily compromised, thus facilitating surveillance interception or the theft of login information. The toolkit supports multithreaded scanning of thousands of targets specified in an easy-to-read targets.txt file, which logs the results in time-stamped and color-coded directories for easy analysis. It runs a series of automated tests, starting with checking for unauthenticated access to obtain real-time information. It then decrypts and recovers configuration files using AES

Since August 2024, the PhantomRaven campaign has uploaded 126 malicious packages to npm, which have been downloaded a total of over 86,000 times . The campaign was discovered by Koi Security, which reported that the attacks were enabled by a little-known feature of npm that allows it to bypass protection and detection. It is noted that at the time of the report’s publication , approximately 80 malicious packages were still active . Experts explain that the attackers are exploiting the Remote Dynamic Dependencies (RDD) mechanism. Typically, a developer sees all of a package’s dependencies at installation time, downloaded from the trusted NPM

Varonis researchers have discovered the Atroposia MaaS (malware-as-a-service) platform. For $200 a month, its customers receive a remote access Trojan with extensive functionality, including remote desktop, file system management, information stealing, credentials, clipboard contents, cryptocurrency wallets, DNS hijacking, and a built-in local vulnerability scanner. According to analysts, Atroposia has a modular architecture. The malware communicates with command and control servers via encrypted channels and is capable of bypassing User Account Control (UAC) to escalate privileges in Windows. Once infected, it provides persistent and undetectable access to the victim’s system. Atroposia’s key modules are: HRDP Connect launches a hidden remote desktop session in

Peter Williams, a former employee of the defense contractor, pleaded guilty in US federal court to two counts of theft of trade secrets, admitting to selling eight zero-day vulnerabilities to a Russian intermediary for millions of dollars in cryptocurrency. According to the indictment , Williams, 39, who worked for a subsidiary of a company called Trenchant , illegally copied in-house software components created exclusively for the U.S. government and its allies over the course of three years. He resold these tools, designed for cyber operations, to a broker openly posing as a provider of exploits for various clients. The investigation determined that

After years of tensions, tariffs, mutual accusations, and trade wars that have shattered the global balance of power, the long-awaited meeting between Donald Trump and Xi Jinping has finally taken place. The face-to-face meeting, which lasted about an hour and forty minutes, took place on Thursday, October 30, at Gimhae Air Base in Busan, South Korea . Initial reports indicated that the summit would have been “positive”—but not for everyone. A truce that suits both Washington and Beijing Trump, visibly pleased, spoke to reporters aboard Air Force One and said, “It was a fantastic meeting. He’s a great leader,” and also added

The outage of Microsoft’s cloud services, which occurred just hours before the release of its quarterly results, is just the latest in a long series of outages that are exposing a structural vulnerability in our digital ecosystem. When platforms like Azure or AWS go down, the ripple effect spreads far beyond the technological sphere: entire companies, public services, communications platforms, and even airlines find themselves paralyzed. The cloud, born as a symbol of efficiency, flexibility, and scalability, has now become a critical dependency . Its promise of always-on availability clashes with the reality of centralized points of failure . A few hours

Taipei, October 30, 2025 – Taiwan’s Legislative Yuan Economic Commission has approved the first reading of a series of amendments to the so-called “Seven Submarine Cable Laws,” introduced to address frequent incidents of damage to submarine infrastructure surrounding the island. The amendments—which affect the Electricity Law, the Natural Gas Activities Law, and the Water Supply Law—provide harsher penalties for those who intentionally destroy water pipes, power cables, or underwater gas pipelines, with penalties of up to seven years in prison . Furthermore, authorities will have the power to confiscate vessels used to commit such crimes. A more stringent legislative package On September