Aggregator

A sophisticated espionage campaign targeting diplomatic missions in South Korea has exposed the evolving tactics of North Korean state-sponsored hackers. Between March and July 2025, threat actors linked to the notorious Kimsuky group conducted at least 19 spear-phishing attacks against embassies worldwide, demonstrating an alarming escalation in their operational sophistication and targeting scope. The campaign […]

The post North Korean Kimsuky Hackers Leveraged GitHub to Attack Foreign Embassies with XenoRAT Malware appeared first on Cyber Security News.

Government agencies at every level face rising cyber threats, evolving compliance demands, and limited IT resources, all while maintaining critical public services. 

Join us to explore how CimTrak empowers government entities to strengthen cybersecurity, detect unauthorized changes, enforce configuration integrity, and recover quickly from incidents. Learn how CimTrak aligns with Zero Trust, NIST 80-53, CMMC, FISMA, and more to support compliance and operational resilience. 

The webinar can be listened to in its entirety below. 

The post Securing Government Systems at Scale: How CimTrak Delivers Unprecedented Visibility, Security and Cyber Resilience appeared first on Security Boulevard.

Cofense launched Vision 3.0, the latest advancement to its Phishing Threat Detection and Response (PDR) platform. Vision 3.0 delivers faster, smarter incident response by giving security teams visibility into exactly how users interacted with phishing emails that slipped past perimeter defenses. Building on the popular “Who Opened” feature, the latest “Who Clicked” update allows analysts to see whether a user opened a malicious message, clicked a link, downloaded a file, or connected to a suspicious … More →

The post Cofense Vision 3.0 identifies user engagement with phishing emails appeared first on Help Net Security.

Three families of Android VPN apps, with a combined 700 million-plus Google Play downloads, are secretly linked, according to a group of researchers from Arizona State University and Citizen Lab. Finding the secret links Virtual private networks (VPNs) are widely marketed as tools for enhancing privacy, securing internet traffic, and shielding users from surveillance. Unfortunately, the consumer VPN ecosystem is decidedly opaque, making it difficult (and sometime impossible) for users to make an evidence-based decision … More →

The post Android VPN apps used by millions are covertly connected AND insecure appeared first on Help Net Security.

报告以“AI是新质生产力”为主线，指出算力、模型、数据、应用正形成指数级放大效应，同时带来幻觉、伦理、攻防失控三大安全新图景。中国提出“全球共治、分级韧性”治理思路，将IT→DT→AI驱动的安全演进划分为三个阶段，倡导用AI提升自身安全、用韧性框架保障AI发展，并发布联合国首个人工智能全球决议，为强国建设与民族复兴守住底线、抓住机遇。