Ian C.

🛡️ Windows 11 23H2 to 25H2 Upgrade Allegedly Breaking Internet Connectivity | Source: https://t.co/YotLv46sTy A persistent bug in Windows 11 in-place upgrades is reportedly wiping critical 802.1X wired authentication configurations, leaving enterprise workstations completely offline until manual intervention is performed. During an in-place Windows 11 upgrade, the contents of the C:\Windows\dot3svc\Policies folder that stores 802.1X wired network (LAN) authentication profiles applied via Group Policy are silently deleted. #windows11 #cybersecuritynews

OpenClaw is a powerful personal assistant that can connect to LLMs, integrate with external APIs, and autonomously execute an array of tasks like sending email or controlling browsers. We developed a deep-dive blog post about what to watch out for and how our platform helps customers identify and secure OpenClaw deployments. Read more here: https://t.co/kBlIF8ROrF

⚠️ Hackers Exfiltrating NTDS.dit File to Gain Full Active Directory Access Source: https://t.co/rhnDs6sdoB Active Directory serves as the foundation of enterprise authentication systems, making it a prime target for sophisticated threat actors. The NTDS[.]dit database file, which stores encrypted password hashes and critical domain configurations, has become one of the most sought-after assets in corporate networks. When adversaries successfully obtain this file, they gain unrestricted access to an organization’s entire identity infrastructure, potentially leading to complete domain compromise. Attackers infiltrate corporate systems specifically to extract the NTDS[.]dit database while evading traditional security controls. #CybersecurityNews

🚨 CRITICAL STEALER ALERT - Last 12 Hours 4 active stealer families detected: Lumma: Mimicking RuStore (rustore[.]iosif-brodskiy[.]su) Stealc: German C2s (89[.]191[.]234[.]128) ACR: Finnish infrastructure Rhadamanthys: US-based (port 11453) 8 C2 servers actively exfiltrating credentials, crypto wallets & 2FA tokens. Peak activity: 06:00-08:00 UTC targeting banking/corporate data.

🚨 BREAKING: New CrowdStrike research unmasks MURKY PANDA's sophisticated cloud-based attacks targeting North American organizations. This China-nexus adversary is actively compromising government, tech, academic, legal, and professional services. Read more: https://t.co/hG9IHkKpVz