China-Linked APT Exploits Sitecore Zero-Day in Attacks on American Critical Infrastructure

/in

A threat actor likely aligned with China has been observed targeting critical infrastructure sectors in North America since at least last year.
Cisco Talos, which is tracking the activity under the name UAT-8837, assessed it to be a China-nexus advanced persistent threat (APT) actor with medium confidence based on tactical overlaps with other campaigns mounted by threat actors from the region.

The Hacker News – ​Read More

Former CISA Director Jen Easterly Appointed CEO of RSAC

/in

Easterly will be leading the world-renowned cybersecurity conference and other RSAC programs.

The post Former CISA Director Jen Easterly Appointed CEO of RSAC appeared first on SecurityWeek.

SecurityWeek – ​Read More

Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways

/in

Cisco on Thursday released security updates for a maximum-severity security flaw impacting Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Email and Web Manager, nearly a month after the company disclosed that it had been exploited as a zero-day by a China-nexus advanced persistent threat (APT) actor codenamed UAT-9686.
The vulnerability, tracked as CVE-2025-20393 (CVSS

The Hacker News – ​Read More

Still on Windows 10? 0patch may be your best defense in the ‘End of Support era’

/in

0patch provides crucial security updates to Windows 10 and fills the support gap left behind by Microsoft.

Latest news – ​Read More

What the nation’s strongest AI regulations change in 2026, according to legal experts

/in

A lawyer and safety researcher tell us what to expect from the US’s most binding AI legislation to date.

Latest news – ​Read More

The latest EndeavorOS release just solved one of my biggest frustrations with Arch Linux

/in

Ganymede is fast, beautiful, stable, and relatively simple to use.

Latest news – ​Read More

iPhone 17 vs. iPhone 17 Pro: I didn’t expect one camera spec to make such a big difference

/in

Between two of the best iPhones on the market right now, it all comes down to perspective.

Latest news – ​Read More

This snap-on iPhone accessory makes charging cables and cords a thing of the past

/in

Statik’s Snap-n-Charge is a charger that connects to your phone without the need for cords or cables.

Latest news – ​Read More

Predator Spyware Sample Indicates ‘Vendor-Controlled’ C2

/in

Researchers detailed how Intellexa, Predator’s owner, uses failed deployments and thwarted infections to strengthen its commercial spyware and generate more effective attacks.

darkreading – ​Read More

Anchorage police department takes servers offline after cyberattack on service provider

/in

The police department said there “is no evidence indicating that APD systems have been compromised or that any APD data has been acquired by the threat actor.”

The Record from Recorded Future News – ​Read More