Russian Attackers Weaponize WinRAR Flaw Against Ukrainian Orgs
Two separate campaigns target CVE-2025-8088, fixed last July, to conduct data theft and cyberespionage against military and government targets in Ukraine.
Military systems depend on secure communications, control systems, and logistics networks, where cyber incidents can disrupt missions and endanger personnel.
Search across headline titles and summaries.
Background for this topic.
Military covers armed forces and the systems supporting defense operations, including classified networks, command-and-control, tactical communications, weapons platforms, intelligence repositories, logistics, and personnel identity systems. These environments depend on trusted data, resilient communications, precise timing and positioning, and mission availability; failures or manipulation can affect safety and operational decisions, not just confidentiality.
Security priorities include separating networks and privileges by mission and clearance, protecting endpoints and embedded or operational technology, and validating software, hardware, and maintenance suppliers. Remote access, contractor and allied connections, legacy equipment, and intermittent or contested connectivity create important attack surfaces. Controls commonly include strong authentication, encryption, secure configuration, vulnerability and patch management, offline or degraded-mode operation, and tested recovery and incident-response procedures. Classified or personal data also requires strict access logging, retention, and applicable national-security and privacy controls.
Weekly headline count for the current query.
Two separate campaigns target CVE-2025-8088, fixed last July, to conduct data theft and cyberespionage against military and government targets in Ukraine.
Researchers uncovered an extensive cyber espionage campaign that used novel backdoors and familiar evasion techniques to maintain persistent access to regional targets.
Iran and its supporters have taken to cyberspace to retaliate for US-Israeli military action, with an aim to cause economic and physical disruption.
Cyber's role in the US raid on Venezuela remains a question, though President Trump alluded to "certain expertise" in shutting down the power grid in Caracas.
The regime's cyber-espionage strategy employs dual-use targeting, collecting info that can support both military needs and broader political objectives.
From intelligence analysts to surface warfare officers, military veterans of all backgrounds are successfully pivoting to cybersecurity careers and strengthening the industry's defense capabilities.
A threat actor purporting to be from the Libyan Navy's Office of Protocol targeted Brazil's military earlier this year using the rare tactic.
The North Korea-linked group Kimsuky used ChatGPT to create deepfakes of military ID documents in an attempt to compromise South Korean targets.
As the field struggles with a shortage, programs that aim to provide veterans with the technical skills needed to succeed in cybersecurity may be the solution for everyone.
Trust no longer comes from network boundaries alone but from continuously validating and protecting data and identities at every interaction.
Even after their zero-day vulnerability turned into an n-day, attackers known as Marbled Dust or Sea Turtle continued to spy on military targets that had failed to patch Output Messenger.
While hacktivists claimed more than 100 successful attacks against Indian government, education, and military targets, the attacks were overblown in most cases and often did not even happen.
Tidrone concentrated on military entities and the satellite sector, using their associated service providers and ERP software to infect not just drones but all the entities that are part of their supply chains.
The US military and law enforcement learned to outthink insurgents. It's time for cybersecurity to learn to outsmart and outmaneuver threat actors with the same framework.
Experts say the leakage of US military plans to a reporter this month reflects a severe operational security failure on the part of US leadership.
Raspberry Robin breaks into organizations and sells access to Russian threat actors, including the military cyber unit behind attempted coups, assassinations, and influence operations throughout Europe.
The continent faces "relentless" military espionage, and increased cyber sabotage at the hands of authoritarian regimes, according to a high-ranking intelligence director.
The sprawling social media and gaming platform says that being considered a Chinese military business must be a mistake.
Parasitic advanced persistent threat Secret Blizzard accesses another APT's infrastructure and steals what it has stolen from South Asian government and military targets.