Espresso

Sign in Subscribe

CISA

Former Cybersecurity Pros Plead Guilty to $1.2M Ransomware Attack; Cl0p Breach Hits Korean Air, GnuPG Patch Fixes Critical Flaw

Former Cybersecurity Pros Plead Guilty to $1.2M Ransomware Attack; Cl0p Breach Hits Korean Air, GnuPG Patch Fixes Critical Flaw

TL;DR * CVE-2025-43529 and CVE-2025-14174 exploited in iOS WebKit attacks; Apple issues emergency patch for Safari, prompting Google Threat Analysis Group collaboration * ALPHV/BlackCat ransomware group extorts $1.2M in Bitcoin from U.S. medical device firms; two former cybersecurity professionals plead guilty, sentencing set for March 12, 2026 * Cl0p

React RCE CVE-2025-55182 Exploited by Botnets, BlackForce MFA Kit Emerges, Azure Linux Patched, AI Pen-Tester Artemis Rises

React RCE CVE-2025-55182 Exploited by Botnets, BlackForce MFA Kit Emerges, Azure Linux Patched, AI Pen-Tester Artemis Rises

TL;DR * CVE-2025-55182 Patched in React Server Components After 137,200 IPs Exposed to RCE via Flight Protocol * BlackForce Phishing Kit Sold on Telegram for €200–300 Uses Legitimate React Code to Bypass MFA Detection * Microsoft Azure Linux Affected by CVE-2025-49177 XFixes Extension Vulnerability Enabling Remote Code Execution * AI Agent

Cyber Threats Surge: Data Breaches, Election Vigilance, Quantum Hysteria

Cyber Threats Surge: Data Breaches, Election Vigilance, Quantum Hysteria

TL;DR * Cyberattack on vendor SitusAMC exposes Social Security numbers of mortgage clients of major U.S. banks. * Hostile nations plan to use quantum computers to breach encryption, forcing U.S. firewall upgrades by 2029. * CISA warns state and local election officials to tighten cyber defenses amid rising disinformation threats.

Generative AI fuels self-modifying malware; Sandworm unleashes ZeroLot; Russian darknet markets move $1.9B Bitcoin; Cisco IT flaw; CISA advisories

Generative AI fuels self-modifying malware; Sandworm unleashes ZeroLot; Russian darknet markets move $1.9B Bitcoin; Cisco IT flaw; CISA advisories

TL;DR * Generative AI fuels a new wave of self-modifying malware evading detection * Cyber-espionage group Sandworm deploys destructive ZeroLot malware against Ukrainian infrastructure * Russian darknet marketplaces moved $1.9 billion in Bitcoin in 2025, fueling illicit finance * Critical Cisco ISE flaw (CVE-2025-20399) can crash authentication servers via crafted RADIUS traffic

Recent Forensic Findings Reshape Cybersecurity Priorities

Recent Forensic Findings Reshape Cybersecurity Priorities

State‑Level Crypto Forfeiture and Its Systemic Impact The Department of Justice announced the seizure of 127 271 BTC (≈ $15 bn) on 14 Oct 2025, the largest crypto forfeiture in U.S. history. The assets originated from Chen Zhi’s forced‑labor “pig‑butchering” syndicate. On‑chain analysis shows a