ReversingLabs researchers link three new malicious PyPI packages that are part of the VMConnect campaign to the notorious North Korean APT group Lazarus.

Malware, dubbed "Infamous Chisel," exfiltrates battlefield data from devices used by front-line Ukrainian soldiers.

Rep. Andrew Garbarino, who chairs the House's Homeland cyber subcommittee, expressed concerns that two well-respected information sharing organizations may be getting squeezed out of their leading roles by CISA in favor of its own Joint Cyber Defense Collaborative.

Group-IB researchers say threat group leveraged automation to impersonate 251 unique brands and reaped a total of $64.5 million.

Researcher described the newly discovered APT group as experienced, sophisticated and well resourced.

The money is designed to go to badly underfunded smaller and rural utilities in order to build more cyber resilience and defend against cyber attacks, ransomware actors and other digital threats.

As well as shutting down the threat group’s infrastructure, the FBI-led sting remotely uninstalled Qakbot malware found on 700,000 computers.

Security teams are encouraged to quickly patch one of the two bugs that is a critical authentication bypass vulnerability.

Researchers advise security teams at all companies that run social media sites to be on the lookout for these type of disinformation campaigns.

According to Mandiant, threat group UNC4841 dropped a second wave of backdoor malware on some victims, including government organizations, to maintain persistence for espionage purposes.