Mastodawn

#Google links #Axios #npm supply chain attack to #North #Korea-linked #APT #UNC1069
https://securityaffairs.com/190256/security/google-links-axios-npm-supply-chain-attack-to-north-korea-linked-apt-unc1069.html
#securityaffairs #hacking

Google links Axios npm supply chain attack to North Korea-linked APT UNC1069

Google links the Axios npm supply chain attack to North Korean threat group UNC1069, targeting financial gain.

Security Affairs

Habr 3h ago

«Все работает, но БД утекает»: Как взлом подрядчика привел к eBPF-руткиту и утечке данных

Когда мы говорим об атаках через цепочку поставок, обычно всплывает в голове что-то монументальное - SolarWinds, взлом инфраструктуры гигантов. Но правда в том, что сегодня любой бизнес, который нанимает внешних админов или DevOps-инженеров, рискует заполучить зловреда, способного годами сидеть в периметре и сливать базы данных(БД). И вы об этом даже не узнаете… В этой статье - хочу поделиться реальным случаем из практики. Как взлом ноутбука подрядчика привел к внедрению eBPF-руткита в Linux. Раскрыть атаку помогла… ну, скажем так, случайная оплошность самих злоумышленников.

https://habr.com/ru/articles/1017934/

#APT #readteam #forensic_analysis

«Все работает, но БД утекает»: Как взлом подрядчика привел к eBPF-руткиту и утечке данных

Хабр

VulDB

19h ago

Added some more indicators for: AsyncRAT (+1), TinyNuke (+1), APT28 (+3), HellsUchecker (+5), Void Manticore (+8), SafePay (+10) and CastleRAT (+1). https://vuldb.com/actor #apt #cti #ioc

Actors

Predictive activity analysis of APT actors in social media, private forums, chat rooms, and darknet markets.

Kpop in Japan 21h ago

https://www.wacoca.com/kpop/1482149/videos/2026-03-31/ When rosé pranked the audience🤣 #blackpink #shorts #rosé ##fyp ##shorts ##viralvideo #APT #BLACKPINK #blink #BTS #Jennie #Jisoo #KPOP女性アイドルランキング #KPOP #Lisa #Rose #subscribe #trending #youtube #ロゼ（ROSÉ） #韓国の女性メンバー人気No1は？

Nux 1d ago

systemctl disable --now unattended-upgrades apt-daily.timer apt-daily-upgrade.timer
systemctl mask unattended-upgrades apt-daily.timer apt-daily-upgrade.timer
sed -i s/"1"/"0"/g /etc/apt/apt.conf.d/20auto-upgrades
chmod 0 /usr/bin/unattended-upgrades
chattr +i /usr/bin/unattended-upgrades

Is there anything else I need to do to disable auto-breakage? #Debian #apt #unattended

Yazoul - Cybersecurity Alerts 1d ago

🔵 THREAT INTELLIGENCE

Critical Citrix NetScaler memory flaw actively exploited in attacks

Vulnerability | CRITICAL
CVEs: CVE-2026-3055

Hackers are exploiting a critical severity vulnerability, tracked as CVE-2026-3055, in Citrix NetScaler ADC and NetScaler Gateway appliances to...

Full analysis:
https://www.yazoul.net/news/news/critical-citrix-netscaler-memory-flaw-actively-exploited-in-attacks

#CyberSecurity #APT #CyberNews

Critical Citrix NetScaler Memory Flaw Actively Exploited - Patch Urgently

Hackers are exploiting a critical severity vulnerability, tracked as CVE-2026-3055, in Citrix NetScaler ADC and NetScaler Gateway appliances to obtain sensitive data. [...]

Yazoul Security

CyberVeille.ch 1d ago

📢 Rapport semestriel OFCS 2025/II : panorama des cybermenaces en Suisse (juil.-déc. 2025)
📝 📋 **Contexte** : Rapport semestriel publié le 30 mars 2026 par l'Office fédéral de la cybersécurité (OFCS) suisse, couvrant la p...
📖 cyberveille : https://cyberveille.ch/posts/2026-03-30-rapport-semestriel-ofcs-2025-ii-panorama-des-cybermenaces-en-suisse-juil-dec-2025/
🌐 source : https://www.ncsc.admin.ch/ncsc/fr/home/aktuell/im-fokus/2026/ncsc-hjb-2025-2.html
#APT #APT29 #Cyberveille

Rapport semestriel OFCS 2025/II : panorama des cybermenaces en Suisse (juil.-déc. 2025)

📋 Contexte : Rapport semestriel publié le 30 mars 2026 par l’Office fédéral de la cybersécurité (OFCS) suisse, couvrant la période juillet–décembre 2025. Premier rapport intégrant à la fois les déclarations volontaires et les 145 déclarations obligatoires issues de la nouvelle loi en vigueur depuis le 1er avril 2025 pour les infrastructures critiques. 📊 Statistiques clés : 29 006 déclarations volontaires reçues au S2 2025 52 % des annonces concernent la fraude 57 incidents ransomware signalés directement (79 au total toutes sources confondues) 73 cas de Business Email Compromise (BEC) au S2 2025 Secteurs les plus touchés par les déclarations obligatoires : secteur public (25 %), IT/télécoms (18 %), finance/assurances (15,7 %) 🦠 Ransomware – menace dominante :

CyberVeille

VulDB

1d ago

Added more indicators for: AdaptixC2 (+1), Havoc (+1), Sliver (+5), RedLine Stealer (+1), ACR Stealer (+1), Cobalt Strike (+1) and Vidar (+10). https://vuldb.com/actor #apt #cti #ioc

Actors

Predictive activity analysis of APT actors in social media, private forums, chat rooms, and darknet markets.

AskUbuntu 2d ago

apt update: The repository is no longer signed #apt #updates

https://askubuntu.com/q/1565283/612

apt update: The repository is no longer signed

When running sudo apt update I get errors like this: The repository 'http://archive.ubuntu.com/ubuntu jammy-backports InRelease' is no longer signed. Multiple repository get this same error. What...

Ask Ubuntu

AskUbuntu 2d ago

Suggestion: block users from installing package "fuse" when package "ubuntu-desktop" is installed #apt #packagemanagement #fuse

https://askubuntu.com/q/1565275/612

Suggestion: block users from installing package "fuse" when package "ubuntu-desktop" is installed

Yesterday I had a little misadventure while trying to install the fontbase application. When I tried to run the fontbase appImage I got an error message stating that appImage required libfuse.so.2 ...

Ask Ubuntu