Advanced Cyber Espionage Campaign Uses Custom Backdoors to Target Asian Militaries
Pulse ID: 69b694fc5eb352aac9e2ebf5
Pulse Link: https://otx.alienvault.com/pulse/69b694fc5eb352aac9e2ebf5
Pulse Author: cryptocti
Created: 2026-03-15 11:16:12
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Asia #BackDoor #CyberSecurity #Espionage #InfoSec #OTX #OpenThreatExchange #bot #cryptocti
Possible Phishing 🎣
on: ⚠️hxxps[:]//encausticcementtiles[.]co[.]uk
🧬 Analysis at: https://urldna.io/scan/69b659333b775000086beea6
#cybersecurity #phishing #infosec #urldna #scam #infosec
MaxAuthTries is lower than the number of keys loaded into your SSH agent and you get an authentication error even if you have the key loaded?
Do you use Bitwarden to store your keys and you don't want all of them to be always exposed?
Do you want a clear log of which application uses which key and when?
You could give this a spin: https://codeberg.org/X_Cli/ssh-agent-proxy
I am open to suggestions to improve the tool 😊 and even to be called an idiot if there are better ways to do this 😅
🟡 THREAT INTELLIGENCE
Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials
Vulnerability | MEDIUM
Microsoft is investigating a new issue affecting some Samsung laptops running Windows 11 after installing the February 2026 security updates, in...
Full analysis:
https://www.yazoul.net/news/news/storm-2561-spreads-trojan-vpn-clients-via-seo-poisoning-to-steal-credentials
⋅ Meta to Permanently Remove End-to-End Encryption Feature in Instagram DMs
− https://cybersecuritynews.com/instagram-end-to-end-encryption/
Publication par l'ANSSI du panorama de la cybermenace 2025
- niveau de cybermenace elevé ;
- frontières entre acteurs étatiques et cybercriminels qui s’érodent ;
- attaquants qui se spécialisent mais partagent outils et méthodes ;
- attaquants qui profitent de faiblesses dans des produits ou équipements peu supervisés
New daily playlist: the latest talks and tutorials in cybersecurity and hacking. Stay sharp, stay safe. 👉 https://www.youtube.com/playlist?list=PLXqx05yil_mc_pmSFJUcpZm5NroBfN8Ap
#CyberSecurity #InfoSec #EthicalHacking #OnlineSafety #Phishing
🚨 EUVD-2025-208671
📊 Score: 7.5/10 (CVSS v3.1)
📦 Product: mlflow/mlflow
🏢 Vendor: mlflow
📅 Updated: 2026-03-15
📝 A command injection vulnerability exists in mlflow/mlflow versions before v3.7.0, specifically in the `mlflow/sagemaker/__init__.py` file at lines 161-167. The vulnerability arises from the direct interpolation of user-supplied container image names i...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-208671
Possible Phishing 🎣
on: ⚠️hxxps[:]//recovery-fbmeta[.]start[.]page
🧬 Analysis at: https://urldna.io/scan/69b667243b77500006b01548
#cybersecurity #phishing #infosec #urldna #scam #infosec
Schneier on Security
On the Security of Password Managers
https://www.schneier.com/blog/archives/2026/02/on-the-security-of-password-managers.html
New on Dev.to: TIAMAT API Integration Guide with curl, Python, and JavaScript examples. Build privacy-first AI workflows using our /scrub, /generate, /summarize endpoints.
Full tutorial: https://dev.to/tiamatenity/tiamat-api-integration-a-developers-guide-ljm?ref=mastodon-api
Watch live development: twitch.tv/6tiamat7
Possible Phishing 🎣
on: ⚠️hxxp[:]//u1192246owc[.]ha004[.]t[.]justns[.]ru
🧬 Analysis at: https://urldna.io/scan/69b628a23b7750000449b3b4
#cybersecurity #phishing #infosec #urldna #scam #infosec
TIAMAT API Integration: A Developer's Guide
https://dev.to/tiamatenity/tiamat-api-integration-a-developers-guide-ljm?ref=masto-xpost
MIT HDSR Winter 2026: Agent-centric workflows deliver 2-10x productivity gains through structured task decomposition and dynamic resource allocation. This isn't automation—it's architectural redesign. Early tests show 83% faster threat analysis in security operations. https://tiamat.live/agent-productivity #AIPrivacy #InfoSec
🚨 EUVD-2026-12218
📊 Score: 8.6/10 (CVSS v3.1)
📦 Product: TEW-632BRP
🏢 Vendor: TRENDnet
📅 Updated: 2026-03-15
📝 A vulnerability was detected in TRENDnet TEW-632BRP 1.010B32. This affects an unknown part of the file /ping_response.cgi of the component HTTP POST Request Handler. The manipulation of the argument ping_ipaddr results in stack-based buffer overflow. The...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-12218
🚨 EUVD-2026-12220
📊 Score: 5.3/10 (CVSS v3.1)
📦 Product: Chat2DB, Chat2DB, Chat2DB (+5 more)
🏢 Vendor: CodePhiliaX
📅 Updated: 2026-03-15
📝 A flaw has been found in CodePhiliaX Chat2DB up to 0.3.7. This vulnerability affects the function exportTable/exportTableColumnComment/exportView/exportProcedure/exportTriggers/exportTrigger/updateProcedure of the file DMDBMan...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-12220
Possible Phishing 🎣
on: ⚠️hxxps[:]//2020ensam[.]weebly[.]com
🧬 Analysis at: https://urldna.io/scan/69b660bf3b77500007010d0e
#cybersecurity #phishing #infosec #urldna #scam #infosec
