CSO Online

China-linked cloud credential heist runs on typos and SMTP

The Linux-based ELF backdoor is targeting cloud workloads across providers, using SMTP-based C2 and typosquatted Alibaba domains to harvest credentials and metadata.

Clarifying HEVC licensing fees, royalties, and why vendors kill HEVC support

In addition to the financial burdens of HEVC licensing, the risk of lawsuits from patent holders can deter companies from ...
CSOonline

North Korean hackers abuse LNKs and GitHub repos in ongoing campaign

The multi-stage campaign targeting South Korea uses weaponized Windows shortcuts and GitHub-based command-and-control to evade detection. DPRK-linked threat actors are preferring stealth over ...