Tag: asia
31 articles

Cisco Confirms Active Exploitation of Unified CM Flaw
Over 200 Cisco Unified Communications Manager instances are vulnerable to a remotely exploitable flaw, CVE-2026-20230, which allows low-complexity server-side request forgery attacks with a simple crafted HTTP request. This critical vulnerability puts widely used IP telephony systems at risk, particularly in Asia and North America.

Asia's Future Hinges on Shifting Geopolitics
Asia stands at a critical juncture, where rapid development has given way to rising military competition and nationalist ambitions - but can it find a way to harness these forces before they spiral out of control?

Microsoft Uncovers ZIP Phishing Campaign Targeting Hotels with Node.js Implant
Microsoft warns of a sneaky ZIP phishing campaign that's been targeting hotels across Europe and Asia since April 2026, using photo-themed attachments to deliver a Node.js implant to front-desk machines. The cleverly crafted emails, often written in Japanese, Danish, or Dutch, use urgent and reputation-focused themes to trick recipients into opening the malicious attachments.

AI Agents Expose Blind Spots in APAC Enterprise Security
Attackers are now targeting AI agents embedded within APAC enterprises, exploiting weaknesses in non-human identities to gain access to sensitive systems, data, and workflows. This emerging threat highlights a significant blind spot in enterprise security, one that's ripe for exploitation by malicious actors.

Fraudulent Call History Apps Drain Millions via 7.3M Play Store Downloads
Millions of Android users have been duped into downloading 28 fake call history apps from the Google Play Store, with over 7.3 million downloads recorded before they were finally removed. These apps, which promised access to call logs and more, actually delivered nothing but randomly generated data - and a hefty price tag.

Novel Chinese Spy Group Infiltrates Critical Networks in Poland, Asia
A recent investigation by TrendAI has uncovered a concerning China-linked espionage campaign, with a novel spy group infiltrating over a dozen critical networks across Poland and Asia, leaving behind a lingering threat that's experts' biggest worry. The threat group, tracked as Shadow-Earth-053, has been actively compromising networks since December 2024.

AtlasCross RAT Fuels Alarming Asia Cyber Espionage Expansion
A new and sophisticated cyber threat, AtlasCross RAT, is targeting Chinese-speaking users in Asia, sparking concerns about the region's growing vulnerability to cyber espionage. As cyber adversaries expand their reach, the question is: are we prepared to face the rising tide of cyber attacks?

Investment Scams: Exclusive Asia Report on Alarming Spread
Our exclusive Asia report exposes the alarming spread of investment scams across the region—read on to spot the red flags and protect your money.

Winos 40 Stunning Risky Asia-Pacific Expansion
Winos 4.0 (ValleyRAT) is widening its reach into Japan and Malaysia using weaponized PDFs that drop links to a follow-on RAT (HoldingHands/Gh0stBins), making multi-stage phishing attacks more potent — now’s the time to lock down PDF handling, enforce URL filtering, and boost behavioral detection before attackers exploit language- and region-specific gaps.

NET malware Dangerous: Exclusive Phantom Taurus Threat
A Beijing-linked group dubbed Phantom Taurus is quietly using custom .NET malware to hunt credentials and siphon sensitive files from government web servers across Asia, Africa and the Middle East — a sharp reminder that everyday frameworks can hide serious threats. Defenders should harden .NET apps, tighten logging and MFA, and share indicators fast to turn the tables before secrets slip away.

ShadowSilk campaign: Exclusive, Alarming Threat
A stealthy campaign called ShadowSilk is quietly probing Central Asian and Asia‑Pacific government networks—stealing credentials, planting webshells and exfiltrating sensitive data—exposing how under-resourced states can be pawns in wider geopolitical espionage. Strengthening basic cyber hygiene, regional cooperation and fast incident response can blunt its impact before the next covert breach reshapes diplomacy and public trust.

ShadowSilk Exclusive: Risky Cyber Heist Exposes 36 Govs
Group-IB says ShadowSilk quietly siphoned sensitive data from 36 government-linked targets across Central Asia and the Asia‑Pacific, proving stealthy, data-driven espionage can outflank regional defenses. Its modular tools and persistent backdoors underscore why governments must share intelligence, harden networks, and treat cybersecurity as an ongoing strategic priority.

web hijacking: Stunning Diplomatic Threat
Imagine being a diplomat and not knowing your web traffic is being silently rerouted—Google has warned of a suspected state-backed web hijacking campaign hitting foreign ministries and diplomats across Asia. This stealthy interception can steal credentials, deploy malware, and influence negotiations, so stronger encryption, hardened captive‑portal workflows, and robust MFA are now mission‑critical.

cyber incident: Urgent Recovery Guide for Best Resilience
Colt has taken key systems offline after a cyber incident, leaving customers without access to portals and Voice APIs while it investigates and works to restore services. The outage underscores how much businesses depend on third-party networks and why clear communication, contingency plans, and rapid remediation are crucial.

SMASH 3000 Stunning Risky Breakthrough
An anonymous Asia‑Pacific buyer has just snapped up hundreds of SMARTSHOOTER SMASH 3000 computerized rifle sights—compact tech that can both shoot down small drones and vastly improve precision. The secrecy around the sale raises tough questions about who gets that advantage, how it will be used, and whether export controls can keep up.

SquidLoader Malware Targets Hong Kong Financial Sector in New Campaign
A new wave of cyberattacks using the sophisticated SquidLoader malware is putting Hong Kong’s financial sector on high alert, threatening to shake the very foundation of global finance with stealthy breaches and data theft.

Taiwan Establishes Drone Warfare School with U.S. Assistance
Taiwan launches a drone warfare school with U.S. support, enhancing its defense capabilities amid rising regional tensions and technological advancements.

U.S. and Philippine Forces Execute Joint Rocket Strike Exercise
U.S. and Philippine forces conduct a joint rocket strike exercise, enhancing military cooperation and readiness for regional security challenges.

Raytheon to Provide Missile Kits for Japan’s ESSM Manufacturing
Raytheon will supply missile kits for Japan’s Evolved Sea Sparrow Missile (ESSM) manufacturing, enhancing maritime defense capabilities.

China Conducts Jungle Cruise Missile Exercise
China conducts a jungle cruise missile exercise, showcasing its military capabilities and readiness in diverse terrains amid rising regional tensions.

Operation Secure disrupts global infostealer malware operations
Operation Secure disrupts global infostealer malware operations by dismantling networks and safeguarding data through coordinated international cybersecurity efforts.

Operation Secure: Police Crack Down on Infostealer Malware
Operation Secure sees police dismantling infostealer malware networks, boosting cybersecurity and protecting sensitive data from cybercriminal incursions.

Philippines buys 12 more FA-50 jets from Korea
Philippines boosts defense with 12 new FA-50 jets from Korea, enhancing its air power and regional security.

China-Linked Cybercriminals Exploit SAP and SQL Server Vulnerabilities Across Asia and Brazil
China-linked cybercriminals exploit SAP and SQL Server vulnerabilities, targeting systems across Asia and Brazil. Uncover evolving cyber threats.