China-Backed Hackers Backdoor US Carrier-Grade Juniper MX Routers

/in

Mandiant researchers found the routers of several unnamed organizations (likely telcos and ISPs) were hacked by UNC3886, and contained a custom backdoor called “TinyShell.”

darkreading – ​Read More

Apple Drops Another WebKit Zero-Day Bug

/in

A threat actor leveraged the vulnerability in an “extremely sophisticated” attack on targeted iOS users, the company says.

darkreading – ​Read More

Nous Research just launched an API that gives developers access to AI models that OpenAI and Anthropic won’t build

/in

Nous Research launches new API for its “unrestricted” Hermes 3 and DeepHermes-3 AI models, challenging OpenAI with toggle-on reasoning capabilities and a developer-first approach.Read More

Security News | VentureBeat – ​Read More

CISA: More than 300 critical infrastructure orgs attacked by Medusa ransomware

/in

An advisory from the FBI, Cybersecurity and Infrastructure Security Agency (CISA) and the Multi-State Information Sharing and Analysis Center (MS-ISAC) on Wednesday said the group and its affiliates have attacked organizations in the medical, education, legal, insurance, technology and manufacturing industries.

The Record from Recorded Future News – ​Read More

Patch Tuesday: Microsoft Fixes 57 Security Flaws – Including Active Zero-Days

/in

Microsoft’s March 2025 Patch Tuesday includes six actively exploited zero-day vulnerabilities. Learn about the critical vulnerabilities and why immediate updates are essential.

Security | TechRepublic – ​Read More

Security Validation Firm Pentera Banks $60M Series D  

/in

Israeli startup in the automated security validation space secures a $60 million round led by Evolution Equity Partners.

The post Security Validation Firm Pentera Banks $60M Series D   appeared first on SecurityWeek.

SecurityWeek – ​Read More

Picklescan Vulnerabilities Could Let Hackers Bypass AI Security Checks

/in

Sonatype researchers uncover critical vulnerabilities in picklescan. Learn how these flaws impact AI model security, Hugging Face, and…

Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – ​Read More

Volt Typhoon Strikes Massachusetts Power Utility

/in

The prolonged attack, which lasted 300+ days, is the first known compromise of the US electric grid by the Voltzite subgroup of the Chinese APT; during it, the APT attempted to exfiltrate critical OT infrastructure data.

darkreading – ​Read More

Mandiant Uncovers Custom Backdoors on End-of-Life Juniper Routers

/in

China-nexus cyberespionage group caught planting custom backdoors on end-of-life Juniper Networks Junos OS routers.

The post Mandiant Uncovers Custom Backdoors on End-of-Life Juniper Routers appeared first on SecurityWeek.

SecurityWeek – ​Read More

Chinese Cyber Espionage Group UNC3886 Backdoored Juniper Routers

/in

UNC3886 hackers target Juniper routers with custom backdoor malware, exploiting outdated systems for stealthy access and espionage. Learn how to stay protected.

Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – ​Read More