#Rhadamanthys, an advanced information stealer first identified in 2022, has undergone rapid updates, with version 0.7.0 introducing AI-driven capabilities for extracting cryptocurrency seed phrases from images.

The head of exploding-pager-company BAC Consulting told authorities that the pagers were sent from Hong Kong to the "customer" (?). BAC paid Gold Apollo €717,000, Teresa Wu's co Apollo Systems $122,000, €9000 for logistics, and €54,000 for displays telex.hu/english/2024/0…

Short news item on #Kimsuky. They've targeted a large, 🇩🇪 military company – Diehl Defence. (For one: The Iris-T batteries used in Ukraine are manufactured by them). We have looked at fake job postings, technical infrastructure and fake login-portals zdf.de/nachrichten/po…

For those of you who have analyzed Rhadamanthys before, Insikt Group feels your pain. We got you covered for version 0.7.0, take a break until 0.8.0 comes out. :) #rhadamanthys #insiktgroup recordedfuture.com/research/rhada…

CALL FOR PAPERS: Free and Open Communications on the Internet (FOCI) 2025 is looking for two, four, and eight-page submissions on topics broadly relating to Internet freedom. Deadline for Issue 1 (virtual event) is November 8. Learn more: foci.community/#cfp

Made public a short while ago, DOJ/FBI case against the Iranian IRGC hackers that breached the Trump campaign. Among most wild findings: Iran stole debate prep material from Trump and tried to send it to Biden camp same day as the disastrous June 27 televised debate.

We are hiring: Chief AI Officer. We have already made a revolution in digital services, and now our goal is to enter the top 3 countries for AI development by 2030. Though, this requires ambitious people. Conditions, goals and our expectations here: ai.diia.gov.ua

Friends in the offsec / red team space, do you ever find yourself cohabitating with another operation? If so, how’d you discover this, and what did you do with said information?

.investigace_cz sheds light on Intellexa's trail in the 🇨🇿Czech Republic, where the company paid out "tens of millions of [Czech] crowns to a man from the town of Krnov over three years." The reason however "remains unclear." investigace.cz/intellexa-pred…

According to German media, North Korean-linked #Kimsuky hackers targeted Diehl Defense, a German arms company, to steal sensitive military data through fake job offers and a spoof website, tricking individuals into downloading malware. Article: zdf.de/nachrichten/po… This

Breaking: The seized LockBit darknet site has been resurrected for more National Crime Agency (NCA) announcements, including a link between a sanctioned Evil Corp member and the ransomware scheme, plus arrests (plural!) in the UK, and maybe France too? Information to be released tomorrow afternoon.

👋 A few friends in the U.S. have recently asked me how to get into cybersecurity, where to start, whether to go for a degree or certification, where to find work, etc. If you have any ideas or resources on this topic that I can pass along, please share them here.

NSO Group indicates rare agreement with Apple over dismissal of lawsuit hubs.li/Q02Rzzbj0 via Tim Starks

#NorthKorean IT workers help finance the regime and steal intellectual property. Our new #BfV_Bund #SecurityAdvisory provides guidance on what to look out for when working with #freelancers: verfassungsschutz.de/SharedDocs/pub…

🚨 ECCRI Virtual Research Workshops are back with the Fall/Winter session (October 2024 – January 2025) calendar, featuring Crystal Whetstone, Ole Willers, Lars_Gjesvik, elsdebusser, Siena Anstis and others! 💡 Read more and sign up: eccri.eu/eccri-virtual-…

Western authorities on Tuesday named Russian national Aleksandr Ryzhenkov as one of the main members of the Evil Corp cybercrime group, as well as an affiliate of the LockBit group. The US also charged him with using BitPaymer ransomware. therecord.media/evil-corp-cybe…

NEW: This is the behind-the-scenes story of how the FBI and Google's Mandiant caught a "serial hacker" who tried to fake his own death to avoid paying child support. Jesse Kipf was a prolific hacker who sold access to systems he hacked to other hackers. techcrunch.com/2024/10/01/how…

At Recorded Future, we’ve been reporting on the alleged “Dark Covenant” between the cybercriminal underground and Russian intelligence for over three years. Using Evil Corp to guide our analysis — today’s news is a vindication. Dark Covenant: recordedfuture.com/research/russi… Dark

The CFP for #SOCON2025 is now open! 🙌 If you have an idea for a talk delving into the complexities of identifying, executing & protecting against modern Attack Paths, we invite you to submit your presentation before the November 15 deadline. Submit ➡️ ghst.ly/cfp-socon25

🇺🇸 Immigration and Customs Enforcement has signed a $2 million contract with 🇮🇱Israeli commercial #spyware vendor Paragon Solutions. It is unknown whether the contract is for the deployment of Paragon’s flagship product Graphite. My latest for WIRED. 👇 wired.com/story/ice-para…