U.S. Sanctions Cloud Provider ‘Funnull’ as Top Source of ‘Pig Butchering’ Scams Krebs on SecurityBrianKrebs
May 29, 2025

The U.S. government today imposed economic sanctions on Funnull Technology Inc., a Philippines-based company that provides computer infrastructure for hundreds of thousands of websites involved in virtual currency investment scams, …


Usage of “passwd” Command in DShield Honeypots, (Fri, May 30th) SANS Internet Storm Center, InfoCON: green
May 29, 2025

DShield honeypots &#;x26;#;x5b;1&#;x26;#;x5d; receive different types of attack traffic and the volume of that traffic can change over time. I&#;x26;#;39;ve been collecting data from a half dozen honeypots for a …


Victoria’s Secret Goes Offline After ‘Incident’ Claims darkreadingKristina Beek, Associate Editor, Dark Reading
May 29, 2025

The lingerie retailer isn't revealing much about the security incident it's dealing with but has brought in third-party experts to address the issue. The lingerie retailer isn't revealing much about the …


New Botnet Plants Persistent Backdoors in ASUS Routers darkreadingNate Nelson, Contributing Writer
May 29, 2025

Thousands of ASUS routers have been infected and are believed to be part of a wide-ranging ORB network affecting devices from Linksys, D-Link, QNAP, and Araknis Network. Thousands of ASUS routers …


SentinelOne Reports Services Are Back Online After Global Outage darkreadingBecky Bracken
May 29, 2025

The outage reportedly hit 10 commercial customer consoles for SentinelOne's Singularity platform, including Singularity Endpoint, XDR, Cloud Security, Identity, Data Lake, RemoteOps, and more. The outage reportedly hit 10 commercial customer …


Zscaler’s Buyout of Red Canary Shows Telemetry’s Value darkreadingRob Wright
May 29, 2025

Red Canary's MDR portfolio complements Zscaler's purchase last year of Israeli startup Avalor, which automates collection, curation, and enrichment of security data. Red Canary's MDR portfolio complements Zscaler's purchase last year …


APT41 Uses Google Calendar Events for C2 darkreadingAlexander Culafi, Senior News Writer, Dark Reading
May 29, 2025

APT41, a Chinese state-sponsored threat actor also known as "Double Dragon," used Google Calendar as command-and-control infrastructure during a campaign last fall. APT41, a Chinese state-sponsored threat actor also known as …


PumaBot Targets Linux Devices in Latest Botnet Campaign darkreadingKristina Beek, Associate Editor, Dark Reading
May 29, 2025

While the botnet may not be completely automated, it uses certain tactics when targeting devices that indicate that it may, at the very least, be semiautomated. While the botnet may not …


LexisNexis Informs 360K+ Customers of Third-Party Data Leak darkreadingKristina Beek, Associate Editor, Dark Reading
May 29, 2025

While the leak affected customer data, LexisNexis said in a notification letter that its products and systems were not compromised. While the leak affected customer data, LexisNexis said in a notification …


Cybercriminals Target AI Users with Malware-Loaded Installers Posing as Popular Tools The Hacker [email protected] (The Hacker News)
May 29, 2025

Fake installers for popular artificial intelligence (AI) tools like OpenAI ChatGPT and InVideo AI are being used as lures to propagate various threats, such as the CyberLock and Lucky_Gh0$t ransomware …