Blog

Google May Have Found the Formula for Taking Down Foreign SMS Phishing Cartels

Google has brought a RICO case against a China-based group called “Lighthouse,” part of a group of similar SMS phishing gangs being referred to as the “Smishing Triad” for their high rate of activity over roughly the past year.
Update of OWASP Top 10 Sees Same Old Problems Topping the List

Most of the movement in the OWASP Top 10 this time is owed to category revamps and mergers. There is some concrete progress to point to in certain areas, but the lead issues of broken access controls and security misconfigurations continue to dominate the list.
Anthropic’s AI Agents the Latest Used in Automated Cyber Espionage Hacks, but How Bad Is It?

Anthropic is revealing that Chinese hackers targeted Claude Code to run a large cyber espionage campaign in September that was “80 to 90%” run by their AI agents.
Global Cyber Insurance Market Cooling in Spots, But Claims Soar 230% in the UK

A £59 million cyber insurance claim total in the UK jumped all the way to £197 million in the following year. The majority reason for claims also now stems from ransomware or malware attacks, up to 51% of incidents from just 32% the prior year.
UK Taking Aim at Critical Infrastructure Cyber Resilience With New Proposed Rules

At the moment, the UK cyber resilience bill focuses much more on reporting requirements than testing. However, there are some new specific defense mandates for impacted organizations. In terms of reporting, incidents classed as “more harmful” would have to be reported to the National Cyber Security Centre (NCSC) within 24 hours.
ShinyHunters, Lapsus$, Scattered Spider Cybercrime Gangs are Back as a Tag Team. Or Are They?

In September ShinyHunters, Lapsus$, and Scattered Spider jointly announced their supposed retirement. But just a couple of months later the three leading cybercrime gangs have seemingly returned to action as a team calling itself “Scattered LAPSUS$ Hunters” (SLH).
AI Cyber Threats Enter New Phase as Google Team Discovers “Just in Time” LLM-Powered Malware

Google’s Threat Intelligence Group (GTIG) documents the first known uses of their Gemini AI assistant to actively participate in live malware attacks, with the capability to do things like generate scripts and change up obfuscation methods on the fly without a hacker’s input.
Nation-State Hackers Continue to Plague Telecoms as Ribbon Security Breach Causes Alarm

The quiet entry and very long breach window without detection does definitely point to nation-state hackers. The list of Ribbon Communications clients certainly raises serious concerns about the security breach, when one sees not just Verizon present but also the U.S. Defense Department, Softbank and City of Los Angeles among others.
Will The New UN Cybercrime Treaty Be a Help or a Hindrance?

Vagueness in terms seems to be the common thread among all groups critical of the cybercrime treaty. There are concerns that overly broad definitions of what constitute crimes could lead to various abuses by more authoritarian governments, and that these governments might also shut down vulnerability testing and disclosure by threatening ethical hackers.
Adobe “Sessionreaper” Vulnerability Moves From Proof-Of-Concept To Actual Exploitation

In the wake of publication of the “SessionReaper” vulnerability for Adobe Commerce, attackers have begun exploiting it in the wild. A patch was issued at the time of public disclosure, but organizations have reportedly been slow to apply it and criminals have been taking advantage.

Blog

Got a Question?