Others (200)
The software development world just received another stark reminder of how critical our tools have become to the security of the digital ecosystem. Cybersecurity researchers recently disclosed a remote code execution (RCE) vulnerability in Microsoft’s Visual Studio Code (VS Code)—one of the most widely used integrated development environments (IDEs) on the planet.
In today’s hyper-connected world, identity is no longer just an administrative concern—it is the new perimeter of cybersecurity. The recent discovery of Storm-0501, a sophisticated phishing campaign targeting Microsoft Entra ID (formerly Azure Active Directory), has highlighted just how vulnerable organizations can be when attackers bypass traditional defenses and focus directly on identity systems.
When you connect to a public Wi-Fi network, what’s the first thing you see?
Usually, a captive portal that login or “Agree to Terms & Conditions” page you click before getting access. For most people, it’s a routine step. But what if that portal wasn’t a harmless gateway, but instead a weaponized tool used by cybercriminals to infect your device?
That’s exactly what’s happening in a sophisticated cyber campaign launched by UNC6384, a threat actor now under global watch. By exploiting captive portals, UNC6384 is distributing the notorious PlugX malware, a remote access trojan capable of data theft, persistence, and further compromise.
