Ping Identity Doubles Down on Partner Strategy with New Partner Program and Advisory Board

Blog

Byadmblake April 10, 2025

Post Content

Blog

Alleged Israeli LockBit Developer Rostislav Panev Extradited to U.S. for Cybercrime Charges

A 51-year-old dual Russian and Israeli national who is alleged to be a developer of the LockBit ransomware group has been extradited to the United States, nearly three months after he was formally charged in connection with the e-crime scheme. Rostislav Panev was previously arrested in Israel in August 2024. He is said to have been…

Read More Alleged Israeli LockBit Developer Rostislav Panev Extradited to U.S. for Cybercrime Charges
Blog

ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics

Cybersecurity researchers have discovered a new phishing campaign undertaken by the North Korea-linked hacking group called ScarCruft (aka APT37) to deliver a malware known as RokRAT. The activity has been codenamed Operation HanKook Phantom by Seqrite Labs, stating the attacks appear to target individuals associated with the National Intelligence Research Association, including academic figures

Read More ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics
Blog

YouTube Game Cheats Spread Arcane Stealer Malware to Russian-Speaking Users

YouTube videos promoting game cheats are being used to deliver a previously undocumented stealer malware called Arcane likely targeting Russian-speaking users. “What’s intriguing about this malware is how much it collects,” Kaspersky said in an analysis. “It grabs account information from VPN and gaming clients, and all kinds of network utilities like ngrok, Playit, Cyberduck,…

Read More YouTube Game Cheats Spread Arcane Stealer Malware to Russian-Speaking Users
Blog

⚡ Weekly Recap: AI Automation Exploits, Telecom Espionage, Prompt Poaching & More

This week made one thing clear: small oversights can spiral fast. Tools meant to save time and reduce friction turned into easy entry points once basic safeguards were ignored. Attackers didn’t need novel tricks. They used what was already exposed and moved in without resistance. Scale amplified the damage. A single weak configuration rippled out…

Read More ⚡ Weekly Recap: AI Automation Exploits, Telecom Espionage, Prompt Poaching & More
Blog

Apple Drops Another WebKit Zero-Day Bug

A threat actor leveraged the vulnerability in an “extremely sophisticated” attack on targeted iOS users, the company says.

Read More Apple Drops Another WebKit Zero-Day Bug
Blog

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a maximum-severity security flaw impacting Commvault Command Center to its Known Exploited Vulnerabilities (KEV) catalog, a little over a week after it was publicly disclosed. The vulnerability in question is CVE-2025-34028 (CVSS score: 10.0), a path traversal bug that affects 11.38 Innovation Release, from versions

Read More Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

Related