Blog Grid

In a recent disclosure, Reddit confirmed falling victim to a targeted phishing scheme in February. The attack resulted in the exposure of internal documents, dashboards, code, contracts, and certain personal information of advertisers, as well as past and present employees. Fortunately, none of the compromised data has been made public so far. However, this may […]

Sam Altman, the CEO of OpenAI, expressed optimism on Monday regarding the willingness of world leaders to address the potential risks associated with artificial intelligence (AI) technology being developed by his company and others. As part of his ongoing world tour, Altman visited Tel Aviv, a major tech hub, following visits to several European capitals. […]

Apple has refuted the claims made by Russia’s Federal Security Service (FSB) on Thursday, alleging that the company collaborated with the U.S. National Security Agency (NSA) to conduct surveillance on Russian iPhone users. In a statement provided to the media, Apple firmly stated that it has never engaged in any cooperation with any government to […]

Dark Pink APT hacking group remains highly active, targeting government, military, and education organizations in Indonesia, Brunei, and Vietnam. Their recent attacks show a revamped chain, new persistence mechanisms, and updated data exfiltration tools. Dark Pink splits functionalities and loads implants from memory to evade detection. They utilize spear-phishing emails, DLL side-loading, and private GitHub […]

Widespread exploitation of a critical command injection vulnerability (CVE-2023-28771) in Zyxel networking devices has been observed, with hackers using it to install malware. The flaw exists in the default configuration of affected firewall and VPN devices, allowing unauthenticated remote code execution through a specially crafted IKEv2 packet to UDP port 500. Zyxel has released patches […]