ESET uncovers the expanded arsenal of China-aligned Webworm; European governments targeted

ESET Research uncovered and analyzed the latest activities and arsenal of China-aligned Webworm advanced persistent threat ...
WeLiveSecurity

Webworm: New burrowing techniques

EchoCreep, which uses Discord for C&C communication, and GraphWorm, which uses Microsoft Graph API for the same purpose. The ...
Dark Reading

China's Webworm Uses Discord, Microsoft Graphs to Hack EU Governments

The advanced persistent threat group also relied on SOCKS proxies like SoftEther VPN, tunneling tools that act as a middleman between victim and attacker.
Microsoft

How Storm-2949 turned a compromised identity into a cloud-wide breach

Storm-2949 turned stolen credentials into a cloud-wide breach, moving from identity compromise to large-scale data theft ...

KnowBe4 Scales Global Threat Defense with API-Driven Email Security and Native-Language Coaching

New API-based integration and native-language coaching provides organizations with enterprise-grade protection and scalable user educationTAMPA, Fla.--(BUSINESS WIRE)--KnowBe4, the global leader in ...

AI agents are quietly generating chaos engineering failures enterprises don’t track yet

There is a category of production incident that engineering teams are not tracking yet — because it doesn't fit any existing ...
Windows Report

Microsoft Warns Storm-2949 Is Stealing Data From Microsoft 365 And Azure

Microsoft says Storm-2949 targets Microsoft 365 and Azure environments using MFA abuse, password resets, and cloud data theft ...

Microsoft Reveals How One Hacked Identity Triggered a Massive Cloud-Wide Breach

Microsoft says Storm-2949 used one hacked identity to infiltrate cloud systems, steal sensitive data, and spread across Azure ...
DataBreachToday

China-Aligned Webworm Adds Discord, OneDrive Backdoors

Eset says China-aligned Webworm added Discord- and Microsoft Graph-based backdoors, custom proxies and cloud-staged malware ...

Microsoft Self-Service Password Reset abused in Azure data theft attacks

A threat actor targeting Microsoft 365 and Azure production environments is stealing data in attacks that abuse legitimate ...
TMCnet

Kore.ai Launches Artemis, the New Generation of the Kore.ai Agent Platform for Building, Governing, and Optimizing Enterprise AI

Kore.ai, the global leader in agentic platforms and applications, today launched the new-generation Kore.ai Agent Platform Artemis edition, the AI-programmable, AI-native foundation that builds, ...

SurgeGraph Now Available as an Agent-Native CLI, MCP Server, and Claude Code Skill for AEO and GEO Workflows

The Answer Engine Optimization platform is now directly callable by AI coding agents, extending its research, writing, ...