Espionage Threat Actor Hits Multiple Government Entities

Cisco Talos researchers have linked known Gh0stRAT campaigns targeting public and private sector entities to a Chinese-speaking threat actor called SneakyChef.

Serious Flaws Fixed in ExpressionEngine CMS

Packet Tide has fixed a group of XSS vulnerabilities and an open HTTP redirection bug in its ExpressionEngine content management system, some of which could give an attacker admin access.

UNC3886 Leverages Zero Days, Novel Backdoor Variants

A new deep-dive investigation into the known UNC3886 gives insight into how the China-linked threat actor “operates in a sophisticated, cautious, and evasive nature.”

VMware Warns of Critical vCenter Server Flaws

Two critical vulnerabilities in VMware's vCenter Server centralized management utility could allow remote code execution.

Heat, Kelso and the Hacker Mindset

In the 1995 classic Heat, the character Kelso is an old-school hacker with a background as a DARPA scientist who uses his knowledge to sell scores to criminals. Meg Gardiner, Casey Ellis, and Dennis Fisher discuss his connection to the hacker ethos.