access ai android api apple attack authentication backdoor breach business ceo china cisa cisco ciso cloud compliance control credentials crypto cve cyber cyberattack cybercrime cybersecurity data data-breach defense detection email exploit finance flaw framework fraud germany google governance government group hacker hacking healthcare identity infrastructure intelligence Internet jobs law leak linux malicious malware microsoft monitoring network open-source password phishing privacy ransomware remote-code-execution resilience risk russia scam service software strategy supply-chain technology theft threat tool unclassified update usa vulnerability windows zero-day
-
UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns
A previously undocumented threat cluster dubbed UAT-10362 has been attributed to spear-phishing campaigns targeting Taiwanese non-governmental organizations (NGOs) and suspected universities to deploy a new Lua-based malware called LucidRook.”LucidRook is a sophisticated stager that embeds a Lua interpreter and Rust-compiled libraries within a dynamic-link library (DLL) to download and First seen on thehackernews.com Jump to…
-
Security Bosses Are All in on AI: Here’s Why
CISOs are bullish on AI and have big plans to roll out future tools. We talk to Reddit CISO Frederick Lee and leading Omdia analyst Dave Gruber about how AI is working out in the real world, as well as its future promise. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/security-bosses-all-in-ai also interesting: Why AI…
-
Zero Days for the Masses: Mythos Presages Exploit Tsunami
Asymmetry Between Exploits Wielded by Nation-States and Hackers Will Disappear. Anthropic’s announcement that its Mythos Preview large language model can find serious zero-day flaws across all manner of code bases old and new, and quickly chain vulnerabilities together to build working exploits, promises to democratize access to such capabilities. First seen on govinfosecurity.com Jump to…
-
Adobe Reader Zero-Day Exploited to Steal Data via Malicious PDFs
An Adobe Reader zero-day vulnerability is being actively exploited via malicious PDFs, allowing hackers to steal data without user interaction, with no patch available. First seen on hackread.com Jump to article: hackread.com/adobe-reader-zero-day-exploit-data-malicious-pdfs/ also interesting: Top 12 ways hackers broke into your systems in 2024 Top 12 ways hackers broke into your systems in 2024 Adobe…
-
Adobe Reader Zero-Day Exploited to Steal Data via Malicious PDFs
An Adobe Reader zero-day vulnerability is being actively exploited via malicious PDFs, allowing hackers to steal data without user interaction, with no patch available. First seen on hackread.com Jump to article: hackread.com/adobe-reader-zero-day-exploit-data-malicious-pdfs/ also interesting: Top 12 ways hackers broke into your systems in 2024 Top 12 ways hackers broke into your systems in 2024 Adobe…
-
Adobe Reader Zero-Day Exploited to Steal Data via Malicious PDFs
An Adobe Reader zero-day vulnerability is being actively exploited via malicious PDFs, allowing hackers to steal data without user interaction, with no patch available. First seen on hackread.com Jump to article: hackread.com/adobe-reader-zero-day-exploit-data-malicious-pdfs/ also interesting: Top 12 ways hackers broke into your systems in 2024 Top 12 ways hackers broke into your systems in 2024 Adobe…
-
‘Several dozen’ high-value corporations hit by new extortion crew in helpdesk phishing spree
Possible link to Mr. Raccoon’s claimed Adobe break-in First seen on theregister.com Jump to article: www.theregister.com/2026/04/09/several_dozen_highvalue_corporations_targeted/ also interesting: 6 rising malware trends every security pro should know 6 rising malware trends every security pro should know 7 biggest cybersecurity stories of 2024 8 Cyber Predictions for 2025: A CSO’s Perspective
-
SASE für das KI-Zeitalter
Island, die Plattform für Enterprise-Work und Entwickler des Enterprise-Browsers, präsentiert eine grundlegend neue Secure-Access-Service-Edge (SASE) -Architektur. Ihr Kern: das Konzept des ‘Perfect Packet”. Es wurde für eine Arbeitswelt entwickelt, in der KI-Agenten, verteilte Remote-Teams und lokale Tools das Büro als Zentrum der Arbeit abgelöst haben. Das Ergebnis: Bis zu 90 Prozent des Datenverkehrs laufen direkt…
-
Der Leak des Claude-Codes von Anthropic zieht Malware-Kampagnen nach sich
Ende März 2026 wurde der vollständige Quellcode von Claude, dem terminal-basierten KI-Programmier-Agenten von Anthropic, versehentlich der Öffentlichkeit preisgegeben. Ausgelöst durch einen einfachen, aber gravierenden Fehler bei der Software-Paketierung hat dieses Datenleck weitreichende Konsequenzen für die IT-Sicherheitslandschaft und die Software-Supply-Chain. Das Zscaler-ThreatLabz-Team hat die Auswirkungen des Vorfalls analysiert und warnt aktuell vor aktiven Bedrohungskampagnen. Hacker und…
-
Glasfaserkabel als Mikrofon: Neue Wanze im Internetanschluss entdeckt
Tags: unclassifiedForscher zeigen, Glasfaserkabel können als Mikrofone missbraucht werden. Die Methode entzieht sich weitgehend jeder Entdeckung. First seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/it-sicherheit/glasfaserkabel-als-mikrofon-neue-wanze-im-internetanschluss-entdeckt-328101.html also interesting: DigiNotar-Einbruch weitgehend aufgeklärt Cops cuff 22-year-old Brit suspected of being Scattered Spider leader Schadsoftware bei einem Gefängnis in Frankreich Das Sommer-Angebot von hide.me: Nur 2,49 EUR monatlich
-
Treasury Department announces crypto industry cyber threat sharing initiative
Eligible U.S. digital asset firms and industry organizations “that meet Treasury’s criteria” will be able to receive, at no cost, the same actionable cybersecurity information Treasury regularly shares with traditional U.S. financial institutions. First seen on therecord.media Jump to article: therecord.media/treasury-department-announces-crypto-info-sharing also interesting: 7 biggest cybersecurity stories of 2024 Password managers under increasing threat as…
-
Emdash: Cloudflares WordPress-Alternative mit Kostenfallen-Potenzial
Tags: wordpressEchte WordPress-Alternative oder Lockangebot für Cloudflares Ökosystem? Nur dort funktioniert das zentrale Feature des CMS Emdash. First seen on golem.de Jump to article: www.golem.de/news/emdash-cloudflares-wordpress-alternative-mit-kostenfallen-potenzial-2604-207393.html also interesting: WordPress LiteSpeed Cache Plugin Security Flaw Exposes Sites to XSS Attacks Flawed WordPress theme may allow admin account takeover on 22,000+ sites (CVE-2025-4322) Help TDS Hacks Legitimate Websites, Using…
-
iOS: Zwischenspeicher macht gelöschte Signal-Nachrichten sichtbar
Tags: unclassifiedAuch nach dem Löschen können Signal-Nachrichten sichtbar bleiben. Möglich macht das ein iOS-Speicherbereich für Benachrichtigungen. First seen on golem.de Jump to article: www.golem.de/news/ios-zwischenspeicher-macht-geloeschte-signal-nachrichten-sichtbar-2604-207397.html also interesting: Petraeus-Affäre: Die verräterische Spur der Liebes-Mails… Facebook-Konto einer Einrichtungskette gehackt Digitale Pandemie: Chris Dimitriadis kommentiert IT-Sicherheitsvorfälle vom 19. Juli 2024 Anonymous Takes Down NISD Over Student Tracking
-
iOS: Zwischenspeicher macht gelöschte Signal-Nachrichten sichtbar
Tags: unclassifiedAuch nach dem Löschen können Signal-Nachrichten sichtbar bleiben. Möglich macht das ein iOS-Speicherbereich für Benachrichtigungen. First seen on golem.de Jump to article: www.golem.de/news/ios-zwischenspeicher-macht-geloeschte-signal-nachrichten-sichtbar-2604-207397.html also interesting: RSAC: Antony Blinken Highlights Urgency in Securing Foundational Tech Debian: KeePassXC-Paket verliert Funktionen, Umstieg zum Nachrüsten nötig How Sage Oak Charter School Strengthens Student Safety and Security in Virtual Learning…
-
Bitcoin Depot Reports $3.6m Crypto Theft After System Breach
Bitcoin Depot has disclosed a cyber-attack that led to the theft of more than 50 Bitcoin, worth $3.66m, after hackers accessed its internal systems First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/bitcoin-depot-dollar36m-crypto/ also interesting: How defenders use the dark web Top 10 Cybersecurity Predictions for 2026 DPRK-Linked Hackers Continue Aggressive Crypto Attacks One Year After…
-
STX RAT Targets Finance Sector With Advanced Stealth Tactics
STX RAT, a newly identified remote access trojan, attempted deployment in finance, showing advanced C2 and stealthy delivery methods First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/stx-rat-targets-finance-sector/ also interesting: China-Nexus Nation State Actors Exploit SAP NetWeaver (CVE-2025-31324) to Target Critical Infrastructures Financial Institutions Under Siege by Greedy Sponge Hackers’ Modified AllaKore RAT Top 5 ways…
-
Smart Slider updates hijacked to push malicious WordPress, Joomla versions
Hackers hijacked the update system for the Smart Slider 3 Pro plugin for WordPress and Joomla, and pushed a malicious version with multiple backdoors. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/smart-slider-updates-hijacked-to-push-malicious-wordpress-joomla-versions/ also interesting: Malicious WordPress Plugin Disguised as Java Update Infects Site Visitors WordPress AI Engine Plugin Bug Allows Remote Code Execution Update Now…
-
New Apple Scam Hits Millions of iPhone Users Worldwide, Draining Bank Accounts
Apple warns of a new scam targeting millions of iPhone users. Learn the red flags, how it works, and how to protect your account and finances. The post New Apple Scam Hits Millions of iPhone Users Worldwide, Draining Bank Accounts appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-apple-iphone-scam-targeting-millions-2026/ also interesting: SMS…
-
Hacker stole £700,000 from U.K. energy company by redirecting payment
The U.K. energy company said a redirected payment meant for a contractor instead landed in a hacker’s bank account. First seen on techcrunch.com Jump to article: techcrunch.com/2026/04/09/hacker-stole-700000-from-u-k-energy-company-by-redirecting-payment/ also interesting: Fintech giant Finastra confirms it’s investigating a data breach Bug bounty programs: Why companies need them now more than ever Synack + Tenable: AI-Powered Partnership Translates…
-
Hacker stole £700,000 from U.K. energy company by redirecting payment
The U.K. energy company said a redirected payment meant for a contractor instead landed in a hacker’s bank account. First seen on techcrunch.com Jump to article: techcrunch.com/2026/04/09/hacker-stole-700000-from-u-k-energy-company-by-redirecting-payment/ also interesting: Hackers Exploiting ESXi Hypervisor Auth Bypass Flaw For Ransomware Attacks Crypto exchange OKX shuts down tool used by North Korean hackers to launder stolen funds Russian…
-
Hacker stole £700,000 from U.K. energy company by redirecting payment
The U.K. energy company said a redirected payment meant for a contractor instead landed in a hacker’s bank account. First seen on techcrunch.com Jump to article: techcrunch.com/2026/04/09/hacker-stole-700000-from-u-k-energy-company-by-redirecting-payment/ also interesting: Hackers Exploiting ESXi Hypervisor Auth Bypass Flaw For Ransomware Attacks Crypto exchange OKX shuts down tool used by North Korean hackers to launder stolen funds Russian…
-
Inside the FBI’s router takedown that cut off APT28’s ‘tremendous access’
FBI cyber chief Brett Leatherman told CyberScoop the Russian GRU campaign was unique in how it could propagate from routers to beyond. First seen on cyberscoop.com Jump to article: cyberscoop.com/fbi-operation-masquerade-russian-gru-router-takedown-brett-leatherman/ also interesting: The 2024 cyberwar playbook: Tricks used by nation-state actors International effort erases PlugX malware from thousands of Windows computers Volume of attacks on…
-
Anthropic Claude Mythos Suggests Vulnerability Management Will Soon ‘Break’: Forrester
Following claims by Anthropic and its partners in a new software security initiative announced this week, it’s clear that AI could soon upend existing vulnerability management practices, according to Forrester analysts. First seen on crn.com Jump to article: www.crn.com/news/security/2026/anthropic-claude-mythos-suggests-vulnerability-management-will-soon-break-forrester also interesting: Cybersecurity Snapshot: CISA’s Best Cyber Advice on Securing Cloud, OT, Apps and More New…
-
AI SOC and SIEM Are Being Repriced
One of the more interesting messages going into RSA was not just that AI is reshaping security. It was that the market is changing what it rewards. I had the pleasure of attending the Piper Sandler investment day on Monday at RSA, one of my favorite events where I get to catch up with many……
-
When We Use AI To Ship Fast, Secrets Spread Fast
The data from this year’s State of Secrets Sprawl report shows that AI is not creating a new secrets problem; it is accelerating every condition that already made secrets dangerous. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/when-we-use-ai-to-ship-fast-secrets-spread-fast/ also interesting: Palo Alto Networks, Zscaler, Cloudflare hit by the latest data breach The 5 power skills…
-
LangChain, Langflow, LiteLLM: When AI’s Foundation Code Becomes the Attack Surface
Three AI framework attacks in one week expose how classic vulnerabilities are hiding in AI’s foundational plumbing, putting millions of deployments at risk. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/langchain-langflow-litellm-when-ais-foundation-code-becomes-the-attack-surface/ also interesting: Top 7 zero-day exploitation trends of 2024 Shift from Reactive to Proactive: Leveraging Tenable Exposure Management for MSSP Success CISOs’ security priorities…
-
Aembit IAM for Agentic AI Is Now Generally Available
5 min readAembit IAM for Agentic AI is now GA. Enforce AI agent access to MCP servers with Blended Identity, secretless credential exchange, and policy-based enforcement. Free tier is available. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/aembit-iam-for-agentic-ai-is-now-generally-available/ also interesting: Rethinking Identity Security in the Age of AI Agentic AI opens door to new ID…
-
The Web Is Full of Traps, and AI Agents Walk Right into Them
The enterprise is deploying AI agents at a pace that has outrun every security framework written to govern them. These agents don’t just answer questions, they browse websites, retrieve documents, call APIs, execute code, manage email, initiate financial transactions, and spawn sub-agents to tackle complex workflows. They operate autonomously, at machine speed, often with.. First…
-
OpenAI Readies Rollout of New Cyber Model as Industry Shifts to Defense
OpenAI is finalizing a cybersecurity product slated for a restricted release to select partners. The new model, as reported by Axios, could signal growing anxiety among developers that their latest creations may be too dangerous for the public. The shift comes as artificial intelligence (AI) capabilities reach a critical threshold in autonomous hacking and reasoning……
-
Massive Data Breach Exposes 337K LAPD-Linked Records
A massive breach exposed 337K LAPD-linked files, raising concerns over third-party risk, sensitive data exposure, and law enforcement cybersecurity gaps. The post Massive Data Breach Exposes 337K LAPD-Linked Records appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-lapd-data-breach-337k-files-exposed/ also interesting: Cybersecurity Snapshot: Study Raises Open Source Security Red Flags, as Cyber Agencies…
-
Claude Managed Agents bring execution and control to AI agent workflows
Anthropic’s Claude Managed Agents are a suite of composable APIs for building and deploying cloud-hosted agents at scale, handling sandboxed code execution, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/09/claude-managed-agents-bring-execution-and-control-to-ai-agent-workflows/ also interesting: AI development pipeline attacks expand CISOs’ software supply chain risk Check Point acquires Lakera to build a unified AI security stack Agentic…
-
Adobe Acrobat Reader Zero Day Exploited in Active PDF Attacks
An Adobe Acrobat zero day is being exploited in the wild. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/adobe-acrobat-reader-zero-day-exploited-in-active-pdf-attacks/ also interesting: Top 12 ways hackers broke into your systems in 2024 Hackers Target Adobe Reader Users With Sophisticated Zero-Day Exploit Hackers Target Adobe Reader Users With Sophisticated Zero-Day Exploit 2025 Year of Browser Bugs Recap:
-
Masjesu botnet targets IoT devices while evading high-profile networks
Masjesu is a stealthy DDoS-for-hire botnet targeting IoT devices, active since 2023 and designed to stay hidden by avoiding high-profile networks. Masjesu is a stealthy botnet active since 2023, advertised as a DDoS-for-hire service. It targets IoT devices like routers and gateways, spanning multiple architectures. Designed for persistence, it executes carefully, avoiding high-profile IP ranges…
-
Chevin pulls the handbrake on FleetWave software after security scare
UK and US customers stuck waiting after fleet management SaaS vendor took affected environments offline First seen on theregister.com Jump to article: www.theregister.com/2026/04/09/chevin_fleetwave_security_incident/ also interesting: nOAuth Exploit Enables Full Account Takeover of Entra Cross-Tenant SaaS Applications What Security Leaders Need to Know About AI Governance for SaaS Cybersecurity leaders’ top seven takeaways from 2025 Goßangelegter…
-
Russia accuses former Radio Free Europe journalist of aiding cyberattacks for Ukraine
In a statement to state-owned media, the FSB said the suspect joined a Telegram channel controlled by the Security Service of Ukraine (SBU) and passed information about a local print publication covering Russia’s war in Ukraine. First seen on therecord.media Jump to article: therecord.media/russia-accuses-radio-free-europe-journalist-aiding-ukraine-cyberattack also interesting: Successful Military Attacks are Driving Nation States to Cyber…
-
Russia accuses former Radio Free Europe journalist of aiding cyberattacks for Ukraine
In a statement to state-owned media, the FSB said the suspect joined a Telegram channel controlled by the Security Service of Ukraine (SBU) and passed information about a local print publication covering Russia’s war in Ukraine. First seen on therecord.media Jump to article: therecord.media/russia-accuses-radio-free-europe-journalist-aiding-ukraine-cyberattack also interesting: Successful Military Attacks are Driving Nation States to Cyber…
-
Russia accuses former Radio Free Europe journalist of aiding cyberattacks for Ukraine
In a statement to state-owned media, the FSB said the suspect joined a Telegram channel controlled by the Security Service of Ukraine (SBU) and passed information about a local print publication covering Russia’s war in Ukraine. First seen on therecord.media Jump to article: therecord.media/russia-accuses-radio-free-europe-journalist-aiding-ukraine-cyberattack also interesting: Successful Military Attacks are Driving Nation States to Cyber…
-
CISA adds second critical flaw in Ivanti EPMM to exploited vulnerabilities catalog
The code injection flaw is similar to a prior vulnerability that was immediately flagged in January. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/cisa-second-critical-flaw-ivanti-epmm-exploited/817080/ also interesting: Network security devices endanger orgs with ’90s era flaws U.S. CISA adds a flaw in Ivanti EPMM to its Known Exploited Vulnerabilities catalog TP-Link Router Flaw CVE-2023-33538 Under Active…
-
NERC is ‘actively monitoring the grid’ following Iran-linked cyber threat
Hackers have disrupted critical U.S. infrastructure by targeting programmable logic controllers, the Cybersecurity and Infrastructure Security Agency warned. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/nerc-cisa-iran-war-cyber-hacking/817079/ also interesting: Critical infrastructure under attack: Flaws becoming weapon of choice Cybersecurity Snapshot: F5 Breach Prompts Urgent U.S. Gov’t Warning, as OpenAI Details Disrupted ChatGPT Abuses Top 10 Cybersecurity…
-
Scammers pose as Amazon support to steal your account
A new wave of Amazon refund scams is spreading, hitting both email inboxes and text messages. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/scammers-pose-as-amazon-support-to-steal-your-account/ also interesting: AI Fraud Funnels How Social Media Scams Are Fueling Targeted Email Attacks Phishers hide scam links with IPv6 trick in “free toothbrush” emails Private jets, deserted shores and an…
-
Scammers pose as Amazon support to steal your account
A new wave of Amazon refund scams is spreading, hitting both email inboxes and text messages. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/scammers-pose-as-amazon-support-to-steal-your-account/ also interesting: AI Fraud Funnels How Social Media Scams Are Fueling Targeted Email Attacks Phishers hide scam links with IPv6 trick in “free toothbrush” emails Private jets, deserted shores and an…
-
Scammers pose as Amazon support to steal your account
A new wave of Amazon refund scams is spreading, hitting both email inboxes and text messages. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/scammers-pose-as-amazon-support-to-steal-your-account/ also interesting: AI Fraud Funnels How Social Media Scams Are Fueling Targeted Email Attacks Phishers hide scam links with IPv6 trick in “free toothbrush” emails Private jets, deserted shores and an…
-
XDR vs SIEM vs SOAR: What’s the Right Cybersecurity Strategy in 2026?
A Strategic Approach to Modern Security Operations The Growing Complexity of Security Decisions Cybersecurity in 2026 is no longer defined by the absence of tools-it is defined by the challenge of choosing the right ones and making them work together effectively. As organizations expand across cloud environments, remote workforces, and interconnected systems, security operations have…
-
The Most Important Cybersecurity Trends in 2026 So Far
In the first quarter of the year, cybersecurity trends have been much of the same, with some new twists. Cyber threats are always evolving, but often have much of the same foundation. The leading 2026 cybersecurity trends so far involve AI, the failure of perimeter defenses, ransomware, and nation-state attacks. Let’s talk about what’s happening…
-
Trump’s Proposed $707 Million CISA Budget Cut a ‘Gift to Nation-State Actors’
The Trump Administration wants to strip $707 million from CISA as it looks to narrow the scope of the security agency, but cybersecurity experts are saying that such cuts are a strategic mistake at a time when threat groups linked to China, Iran, and other nation-states are increasingly targeting U.S. critical infrastructure. First seen on…
-
React2DoS (CVE-2026-23869): When the Flight Protocol Crashes at Takeoff
Tags: vulnerabilityExecutive Summary In this article, we disclose a new high severity unauthenticated remote denial”‘of”‘service vulnerability we identified and reported in React Server Components that we’ve dubbed “React2DoS”. In this blog, we’ll analyze its impact and place it in the broader context of recently found Flight protocol vulnerabilities, especially CVE”‘2026″‘23864. Introduction We are in a phase……
-
prompted 2026 Al Go Beep Boop!
Author, Creator & Presenter: Adam Laurie (Major Malfunction) CISO At Alpitronic Our thanks to [un]prompted for publishing their Creators, Authors and Presenter’s outstanding [un]prompted 2026 AI Security Practitioner content on the Organizations’ YouTube Channel. Permalink First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/unprompted-2026-al-go-beep-boop/ also interesting: Where CISOs need to see Splunk go next CISOs Finally…
-
Nach Cyberangriff auf FBI-Chef – USA melden iranischen Hackerangriff auf Infrastruktur
First seen on security-insider.de Jump to article: www.security-insider.de/iran-nahe-hacker-angriffe-us-infrastruktur-iranwire-a-099bb19960db4464add450892a23b058/ also interesting: Nucor Steel Manufacturer Halts Production After Cyberattack Iranian cyber threats overhyped, but CISOs can’t afford to let down their guard Datenleck bei Kido-Kindergärten Latin American Orgs Lack Confidence in Cyber Defenses, Skills
-
Nach Cyberangriff auf FBI-Chef – USA melden iranischen Hackerangriff auf Infrastruktur
First seen on security-insider.de Jump to article: www.security-insider.de/iran-nahe-hacker-angriffe-us-infrastruktur-iranwire-a-099bb19960db4464add450892a23b058/ also interesting: FCC calls for urgent cybersecurity overhaul amid Salt Typhoon espionage case Nico Lange: ‘Cybersicherheit ist eine Frage der Verteidigung” Nucor Steel Manufacturer Halts Production After Cyberattack Sieben gängige Wege, ein Smartphone zu hacken