Skip to main content

Tag: asia

31 articles

Cisco Unified Communications Manager system equipment in a network room.

Cisco Confirms Active Exploitation of Unified CM Flaw

Over 200 Cisco Unified Communications Manager instances are vulnerable to a remotely exploitable flaw, CVE-2026-20230, which allows low-complexity server-side request forgery attacks with a simple crafted HTTP request. This critical vulnerability puts widely used IP telephony systems at risk, particularly in Asia and North America.

Analyst 207
Calm waters with distant ships at sunrise or sunset in a strategic Asian harbor.

Asia's Future Hinges on Shifting Geopolitics

Asia stands at a critical juncture, where rapid development has given way to rising military competition and nationalist ambitions - but can it find a way to harness these forces before they spiral out of control?

Analyst 207
Hotel front desk with computer workstation and blurred laptop screen in background.

Microsoft Uncovers ZIP Phishing Campaign Targeting Hotels with Node.js Implant

Microsoft warns of a sneaky ZIP phishing campaign that's been targeting hotels across Europe and Asia since April 2026, using photo-themed attachments to deliver a Node.js implant to front-desk machines. The cleverly crafted emails, often written in Japanese, Danish, or Dutch, use urgent and reputation-focused themes to trick recipients into opening the malicious attachments.

Analyst 207
Modern office interior with robotic system component in foreground and blurred server room in background.

AI Agents Expose Blind Spots in APAC Enterprise Security

Attackers are now targeting AI agents embedded within APAC enterprises, exploiting weaknesses in non-human identities to gain access to sensitive systems, data, and workflows. This emerging threat highlights a significant blind spot in enterprise security, one that's ripe for exploitation by malicious actors.

Analyst 207
Smartphone with blurred Google Play Store page on screen, surrounded by receipts on a neutral surface in a bright, everyday…

Fraudulent Call History Apps Drain Millions via 7.3M Play Store Downloads

Millions of Android users have been duped into downloading 28 fake call history apps from the Google Play Store, with over 7.3 million downloads recorded before they were finally removed. These apps, which promised access to call logs and more, actually delivered nothing but randomly generated data - and a hefty price tag.

Analyst 207
Rows of equipment and monitors line the walls of a network operations center, with technicians working in the background.

Novel Chinese Spy Group Infiltrates Critical Networks in Poland, Asia

A recent investigation by TrendAI has uncovered a concerning China-linked espionage campaign, with a novel spy group infiltrating over a dozen critical networks across Poland and Asia, leaving behind a lingering threat that's experts' biggest worry. The threat group, tracked as Shadow-Earth-053, has been actively compromising networks since December 2024.

Analyst 207
AtlasCross RAT Fuels Alarming Asia Cyber Espionage Expansion

AtlasCross RAT Fuels Alarming Asia Cyber Espionage Expansion

A new and sophisticated cyber threat, AtlasCross RAT, is targeting Chinese-speaking users in Asia, sparking concerns about the region's growing vulnerability to cyber espionage. As cyber adversaries expand their reach, the question is: are we prepared to face the rising tide of cyber attacks?

Analyst 207
Person in shadows reaching for cash with laptop displaying downward trend in background.

Investment Scams: Exclusive Asia Report on Alarming Spread

Our exclusive Asia report exposes the alarming spread of investment scams across the region—read on to spot the red flags and protect your money.

Analyst 207
Winos 40 Stunning Risky Asia-Pacific Expansion

Winos 40 Stunning Risky Asia-Pacific Expansion

Winos 4.0 (ValleyRAT) is widening its reach into Japan and Malaysia using weaponized PDFs that drop links to a follow-on RAT (HoldingHands/Gh0stBins), making multi-stage phishing attacks more potent — now’s the time to lock down PDF handling, enforce URL filtering, and boost behavioral detection before attackers exploit language- and region-specific gaps.

Analyst 207
NET malware Dangerous: Exclusive Phantom Taurus Threat

NET malware Dangerous: Exclusive Phantom Taurus Threat

A Beijing-linked group dubbed Phantom Taurus is quietly using custom .NET malware to hunt credentials and siphon sensitive files from government web servers across Asia, Africa and the Middle East — a sharp reminder that everyday frameworks can hide serious threats. Defenders should harden .NET apps, tighten logging and MFA, and share indicators fast to turn the tables before secrets slip away.

Analyst 207
ShadowSilk campaign: Exclusive, Alarming Threat

ShadowSilk campaign: Exclusive, Alarming Threat

A stealthy campaign called ShadowSilk is quietly probing Central Asian and Asia‑Pacific government networks—stealing credentials, planting webshells and exfiltrating sensitive data—exposing how under-resourced states can be pawns in wider geopolitical espionage. Strengthening basic cyber hygiene, regional cooperation and fast incident response can blunt its impact before the next covert breach reshapes diplomacy and public trust.

Analyst 207
ShadowSilk Exclusive: Risky Cyber Heist Exposes 36 Govs

ShadowSilk Exclusive: Risky Cyber Heist Exposes 36 Govs

Group-IB says ShadowSilk quietly siphoned sensitive data from 36 government-linked targets across Central Asia and the Asia‑Pacific, proving stealthy, data-driven espionage can outflank regional defenses. Its modular tools and persistent backdoors underscore why governments must share intelligence, harden networks, and treat cybersecurity as an ongoing strategic priority.

Analyst 207
web hijacking: Stunning Diplomatic Threat

web hijacking: Stunning Diplomatic Threat

Imagine being a diplomat and not knowing your web traffic is being silently rerouted—Google has warned of a suspected state-backed web hijacking campaign hitting foreign ministries and diplomats across Asia. This stealthy interception can steal credentials, deploy malware, and influence negotiations, so stronger encryption, hardened captive‑portal workflows, and robust MFA are now mission‑critical.

Analyst 207
cyber incident: Urgent Recovery Guide for Best Resilience

cyber incident: Urgent Recovery Guide for Best Resilience

Colt has taken key systems offline after a cyber incident, leaving customers without access to portals and Voice APIs while it investigates and works to restore services. The outage underscores how much businesses depend on third-party networks and why clear communication, contingency plans, and rapid remediation are crucial.

Analyst 207
SMASH 3000 Stunning Risky Breakthrough

SMASH 3000 Stunning Risky Breakthrough

An anonymous Asia‑Pacific buyer has just snapped up hundreds of SMARTSHOOTER SMASH 3000 computerized rifle sights—compact tech that can both shoot down small drones and vastly improve precision. The secrecy around the sale raises tough questions about who gets that advantage, how it will be used, and whether export controls can keep up.

Analyst 207
SquidLoader Malware Targets Hong Kong Financial Sector in New Campaign

SquidLoader Malware Targets Hong Kong Financial Sector in New Campaign

A new wave of cyberattacks using the sophisticated SquidLoader malware is putting Hong Kong’s financial sector on high alert, threatening to shake the very foundation of global finance with stealthy breaches and data theft.

Analyst 207
Taiwan Establishes Drone Warfare School with U.S. Assistance

Taiwan Establishes Drone Warfare School with U.S. Assistance

Taiwan launches a drone warfare school with U.S. support, enhancing its defense capabilities amid rising regional tensions and technological advancements.

Analyst 207
Philippine and US military personnel watch as a rocket launcher fires into a stormy sky, silhouetted against the fiery glow.

U.S. and Philippine Forces Execute Joint Rocket Strike Exercise

U.S. and Philippine forces conduct a joint rocket strike exercise, enhancing military cooperation and readiness for regional security challenges.

Analyst 207
Raytheon to Provide Missile Kits for Japan’s ESSM Manufacturing

Raytheon to Provide Missile Kits for Japan’s ESSM Manufacturing

Raytheon will supply missile kits for Japan’s Evolved Sea Sparrow Missile (ESSM) manufacturing, enhancing maritime defense capabilities.

Analyst 207
China Conducts Jungle Cruise Missile Exercise

China Conducts Jungle Cruise Missile Exercise

China conducts a jungle cruise missile exercise, showcasing its military capabilities and readiness in diverse terrains amid rising regional tensions.

Analyst 207
Operation Secure disrupts global infostealer malware operations

Operation Secure disrupts global infostealer malware operations

Operation Secure disrupts global infostealer malware operations by dismantling networks and safeguarding data through coordinated international cybersecurity efforts.

Analyst 207
Operation Secure: Police Crack Down on Infostealer Malware

Operation Secure: Police Crack Down on Infostealer Malware

Operation Secure sees police dismantling infostealer malware networks, boosting cybersecurity and protecting sensitive data from cybercriminal incursions.

Analyst 207
Philippines buys 12 more FA-50 jets from Korea

Philippines buys 12 more FA-50 jets from Korea

Philippines boosts defense with 12 new FA-50 jets from Korea, enhancing its air power and regional security.

Analyst 207
China-Linked Cybercriminals Exploit SAP and SQL Server Vulnerabilities Across Asia and Brazil

China-Linked Cybercriminals Exploit SAP and SQL Server Vulnerabilities Across Asia and Brazil

China-linked cybercriminals exploit SAP and SQL Server vulnerabilities, targeting systems across Asia and Brazil. Uncover evolving cyber threats.

Analyst 207