A China-linked advanced persistent threat (APT) group associated with HoneyMyte, also known as Mustang Panda or Bronze President, has been observed deploying a new kernel-mode rootkit to stealthily hide its ToneShell backdoor operations.
China-linked threat actors have been actively exploiting misconfigured Cisco security products to gain persistent access to targeted networks, according to new findings from Cisco. The campaign has been ongoing for several weeks and highlights how insecure configuration choices—not software flaws alone—can expose critical infrastructure to advanced cyber threats.
Microsoft is preparing to roll out a powerful new security enhancement to its Teams platform, aimed at combating the growing threat of spam, phishing, and malicious calls targeting organizations. The upcoming feature, “Report a Suspicious Call,” will give users the ability to directly flag questionable calls — adding an extra layer of protection to everyday communication.
AWS Identity and Access Management (IAM) is often perceived as a strongly consistent and immediate-response system. However, like many globally distributed services, it actually operates on an eventual consistency model. While this design enables scalability across regions, it also introduces brief but dangerous windows that attackers can exploit to maintain persistence — even after defenders believe they have removed access.
Key Takeaways:
The Reserve Bank of India (RBI) has made the '.bank.in' domain mandatory for all licensed banks in India.
This exclusive domain acts as a critical security filter to prevent banking fraud, especially phishing.
Only RBI-regulated institutions can register for the '.bank.in' domain, guaranteeing website authenticity.
Customers must now verify the URL ending to ensure they are on a legitimate bank portal.
Chinese Hackers Use Kernel Rootkit to Conceal ToneShell Malware A China-linked advanced persistent threat (APT) group associated with Hon...
