Amnesty International’s Security Labs reported March 29 that it found a mercenary spyware campaign exploiting a zero-day in Android devices.

The company's CISO said a bundled library contains an executable file, and urges network defenders to uninstall the desktop client.

The hacking group - believed to be connected to North Korea's General Reconnaissance Bureau - also funds its operations using stolen cryptocurrency laundered through hash rental and cloud mining services.

Executive order bans U.S. agencies from purchasing or using certain commercial spyware programs, but exceptions for spyware testing and research are built in.

We sit down with Nico Waisman to discuss vulnerability research and other security-related topics!

Cyberespionage groups linked to China were responsible for over 50% of the exploits in 2022 that the firm said it could confidently track to 13 advanced persistent threat groups (APTs), followed by Russia and North Korea. Overall, groups with links to nation-states accounted for 80% of the zero-day exploits.

AT&T Cybersecurity points out that the VMware ESXi server issue has not gone away, while researchers confirm that security teams need to prioritize a patch ASAP.

Four of the zero-day bugs allow adversaries to remotely compromise a targeted phone with just a phone number - no user interaction required.

The U.S. agency tasked with protecting the nation’s cybersecurity and infrastructure added a vulnerability targeting Adobe ColdFusion to its catalog of known exploits after the software maker issued a patch the day before. 

Multiple cyber threat actors exploited a vulnerability that was first documented in 2019 allowed them to access a federal agency’s web server, CISA reported.