Microsoft Uncovers New Malicious Campaign Targeting Developers
This campaign is an offshoot of the more familiar and pervasive fake job interview and phony tech worker scams that have been coming from North Korea for several years.
All topics
Articles
96 Posts
Google Disrupts ‘Prolific, Elusive’ China-Linked Actor
Google said it has found 53 victims that have been impacted by the group, which it has tracked since 2017.
Former US Defense Contractor Sentenced to Jail For Selling Exploits
In a parallel Tuesday announcement, the Treasury Department also sanctioned the exploit broker network that had acquired the tools.
Researchers Warn of ‘Widespread’ Ivanti EPMM Exploitation
Exploitation of CVE-2026-1281 and CVE-2026-1340 is “widespread and mostly automated," according to Unit 42 researchers.
Chinese Actors Exploited Dell RecoverPoint for VMs Flaw Since 2024
The hardcoded credential vulnerability (CVE-2026-22769) exists in Dell RecoverPoint for Virtual Machines and has been exploited since mid-2024.
Apple Patches iOS Zero Day CVE-2026-20700
That vulnerability also was patched in macOS, but the active exploitation that Apple disclosed was against iOS only.