Critical Vulnerabilities Found in Ruijie Reyee Cloud Management Platform
Cybersecurity firm Claroty has revealed severe vulnerabilities in Ruijie's Reyee Cloud Management Platform and associated devices, potentially affecting 50,000 systems. These flaws allow attackers to authenticate using predictable serial numbers, execute remote commands, and manipulate cloud communications. Exploitation could result in device takeover, denial-of-service attacks, and data theft. Ruijie has patched the issues, mitigating the risk. Read more at Claroty.
US Updates a Science and Technology Pact With China to Reflect Growing Rivalry and Security Threats
The U.S. has updated its science and technology agreement with China to limit cooperation in areas critical to national security, such as AI and quantum computing. Signed originally in 1979, the agreement now reflects heightened U.S.-China tensions and the need for tighter safeguards. The new pact marks a shift towards more controlled collaboration amid ongoing technological competition. Learn more at State Department.
Hackers Possibly Stole Personal Data From Bitcoin ATM Operator Byte Federal
Bitcoin ATM operator Byte Federal has notified 58,000 users of a potential data breach involving sensitive information like Social Security numbers and transaction details. The attack exploited a GitLab vulnerability, prompting Byte Federal to overhaul its security systems. No funds were compromised, but affected users are urged to monitor their accounts. Full details at Byte Federal.
Rydox Cybercrime Marketplace Disrupted, Administrators Arrested
The U.S. has dismantled Rydox, a marketplace for stolen data and fraud tools. With over 321,000 illicit products sold since 2016, the platform's administrators were arrested in Kosovo and Albania. Authorities seized cryptocurrency assets worth $225,000 and took the Rydox domain offline. Read more at Justice Department.
Microsoft Patches Vulnerabilities in Windows Defender, Update Catalog
Microsoft has addressed critical vulnerabilities in Windows Defender and Update Catalog, including issues that allowed privilege escalation and data disclosure. While no user action is required, these incidents highlight the growing importance of transparency in server-side vulnerability disclosures. Explore the details at Microsoft.
Germany Sinkholes Botnet of 30,000 BadBox-Infected Devices
Germany's cybersecurity agency has neutralized a botnet of 30,000 devices infected with the pre-installed BadBox malware. These devices, mainly low-cost Android systems, were used for malicious activities, including ad fraud. Consumers are advised to scan their devices and verify manufacturer security practices. More at BSI.
Iranian Hackers Use IOCONTROL Malware to Target OT, IoT Devices in US, Israel
Claroty has identified IOCONTROL, a malware deployed by Iranian group CyberAv3ngers to compromise IoT and OT devices in critical infrastructure. The malware uses the MQTT protocol for lateral movement and device control, with attacks targeting water facilities and gas stations. Learn more at Claroty.
Thai Officials Targeted in Yokai Backdoor Campaign Using DLL Side-Loading Techniques
Thai government officials have been targeted by a Yokai backdoor campaign leveraging DLL side-loading. This attack chain involves malicious RAR files and decoy documents, allowing threat actors to establish persistence and execute commands remotely. The campaign highlights the continued sophistication of state-sponsored attacks. Full analysis at Netskope.
New Linux Rootkit PUMAKIT Uses Advanced Stealth Techniques to Evade Detection
A newly discovered Linux rootkit, PUMAKIT, employs advanced techniques like syscall hooking and memory-resident execution to evade detection. Elastic Security Lab reports that the malware specifically targets Linux systems to escalate privileges and compromise files. Dive deeper at Elastic Security.
Yahoo Cybersecurity Team Sees Layoffs, Outsourcing of ‘Red Team’ Under New CTO
Yahoo has laid off 25% of its cybersecurity team, including its red team. The company announced plans to outsource offensive security operations, citing strategic realignment. While Yahoo emphasizes maintaining security standards, experts question the long-term impact of these cuts. Read the full story at TechCrunch.
Rhode Island Says Personal Data Likely Breached in Social Services Cyberattack
A cyberattack on Rhode Island’s RIBridges system may have exposed sensitive data of thousands of residents, including Social Security and banking details. The state is working with Deloitte to secure the system and advises residents to remain vigilant for fraudulent activity. More at The Providence Journal.
As Gmail Hackers Strike—4 Ways to Protect Your Email Account
Gmail users face evolving threats, including phishing attacks and AI-driven scams. Google's AI protections block 99.9% of threats, but users are encouraged to adopt practices like enabling 2FA and monitoring account activity. Learn how to secure your email at Google Blog.
Ukraine’s Defence Minister Agrees With US to Deepen Cybersecurity Cooperation
Ukraine and the U.S. have committed to expanding cooperation in cybersecurity. The partnership aims to bolster Ukraine's digital infrastructure and counter Russian cyber threats through investments and advanced technologies. Details at Ministry of Defence.
Sen. Wyden Proposes Stricter Cybersecurity Rules for Telecom Companies
In response to China-sponsored cyberattacks, Senator Ron Wyden has introduced legislation to mandate rigorous cybersecurity standards for U.S. telecom operators. The proposed rules include annual security audits and executive accountability. Learn more at FCC.
Hong Kong Gazettes Critical Infrastructure Cybersecurity Bill
Hong Kong's Protection of Critical Infrastructure Bill proposes mandatory cybersecurity measures for critical operators, including incident reporting and risk assessments. The bill is set for review by the Legislative Council. Read the consultation report at Hong Kong Security Bureau.
Maritime Industry Faces Heightened Cybersecurity Risks Amid Digital Transformation
A DNV report reveals the maritime industry's willingness to accept greater cybersecurity risks as it embraces digitalization. With 60% of organizations increasing investments in IT and OT security, experts urge better collaboration to mitigate growing threats. Read the report at DNV.
Making Smart Cybersecurity Spending Decisions in 2025
As cybersecurity budgets are set to rise 15% in 2025, organizations must focus on balancing technical investments with employee training and incident response strategies. Gartner attributes the spending surge to generative AI and the global talent shortage. Explore budgeting insights at Gartner.
ISC2 Survey Reveals Critical Gaps in Cybersecurity Leadership Skills
A new ISC2 survey highlights significant deficiencies in leadership skills among cybersecurity professionals. Communication and strategic thinking are among the top challenges as regulations push cybersecurity into the boardroom. Read the findings at ISC2.
Clinicians' Phones Pose Cybersecurity Risks, Study Finds
A study reveals that personal devices used by clinicians often lack essential security features, putting sensitive patient data at risk. Experts recommend specialized training and robust BYOD policies to safeguard healthcare systems. Full study at International Journal of Medical Informatics.
For more in-depth cybersecurity news and insights, visit CybersecurityHQ.