Tag: CHINA

Critical Flaws in Contec CMS8000 Allow Remote Code Execution and Patient Data Theft
A recent discovery of severe vulnerabilities in Contec Health’s CMS8000 Patient Monitor poses significant cybersecurity and patient safety threats, receiving a CVSS v4 base score of 9.3. Key issues include Out-of-Bounds Write, Hidden Functionality (Backdoor), and Privacy Leakage, which could permit remote code execution and unauthorized access to sensitive patient information.…
Read More
Italy Bans Chinese DeepSeek AI Over Data Privacy and Ethical Concerns
Summary: Italy’s data protection authority has blocked the Chinese AI firm DeepSeek’s service due to inadequate clarity regarding its data handling practices and personal data usage. This decision follows concerns over user data collection, potential legal implications, and vulnerabilities in the company’s models, which have raised national security alarms.…
Read More
Infrastructure Laundering: Silent Push Exposes Cloudy Behavior Around FUNNULL CDN Renting IPs from Big Tech
Silent Push has identified a growing criminal practice known as “Infrastructure Laundering,” where threat actors rent IP addresses from mainstream cloud providers like AWS and Microsoft Azure to host illicit content. Despite efforts to ban these IPs, new ones are continually acquired, raising concerns about the effectiveness of cloud providers in detecting and preventing such abuses.…
Read More
Trump Administration Faces Security Balancing Act in Borderless Cyber Landscape
Summary: As President Trump prepares to re-enter the White House, he faces a dramatically evolved cyber landscape since 2021, characterized by advanced threats and increased regulatory actions. The new administration must balance national cyber resilience with the promotion of AI and other emerging technologies while navigating bipartisan concerns and the complexities of cyber governance.…
Read More
Backdoor found in two healthcare patient monitors, linked to IP in China
Summary: The US Cybersecurity and Infrastructure Security Agency (CISA) has identified a backdoor in Contec CMS8000 healthcare monitoring devices that transmits patient data to a remote IP address and allows external execution of files, posing significant security risks. This backdoor, discovered through an external research disclosure, enables remote access that can lead to the complete takeover of affected devices.…
Read More
Google: Over 57 Nation-State Threat Groups Using AI for Cyber Operations
Summary: A recent report from Google’s Threat Intelligence Group highlights that over 57 distinct threat actors from countries like China, Iran, North Korea, and Russia are leveraging Google-powered AI technology to enhance their cyber operations. These Advanced Persistent Threat (APT) groups are primarily using AI for tasks such as research, coding, and creating content, with a particular emphasis on social engineering and reconnaissance activities.…
Read More
Cyber Insights 2025: Cyberinsurance – The Debate Continues
Summary: SecurityWeek’s Cyber Insights 2025 discusses the evolution and challenges of cyberinsurance, focusing on the growing adoption among SMEs, the complexities of underwriting, and the impact of emerging threats like AI and supply chain risks. Experts highlight the difficulty in achieving a balance between coverage and costs amidst evolving cyber threats and regulatory requirements.…
Read More
DeepSeek exposes database with over 1 million chat records
Summary: A recent security assessment by Wiz Research uncovered that Chinese AI startup DeepSeek exposed two unsecured databases containing sensitive user chat histories, API keys, and operational metadata. The databases were publicly accessible, allowing for arbitrary SQL queries without authentication, posing significant risks to DeepSeek’s security and user privacy.…
Read More
Unprotected DeepSeek Database Exposed Chats, Other Sensitive Information
Summary: A security breach at the Chinese AI company DeepSeek exposed sensitive information due to an unprotected database, as revealed by cloud security firm Wiz. This breach allowed for the execution of arbitrary SQL queries that disclosed chat histories, API keys, and other critical data. DeepSeek has since patched the vulnerability but faces scrutiny over data privacy and security concerns from various countries.…
Read More
Inside APT34 OilRig: Tools Techniques and Global Cyber Threats
APT34, a sophisticated Iranian cyber threat group, targets critical infrastructure in various sectors globally, particularly in the Middle East. The group employs advanced techniques and operates with support from state-sponsored entities, showcasing their adaptability and persistent threat. Affected: finance, energy, telecommunications, government, aviation, defense, education, oil and gas sectors

Keypoints :

APT34, also known as OilRig, has been active since 2012 and is believed to operate on behalf of the Iranian government.…
Read More
PrintNightmare Aftermath: Windows Print Spooler is Better. What’s Next?
Summary: The PrintNightmare vulnerability, disclosed in 2021, revealed significant security flaws within Microsoft’s Print Spooler service, allowing attackers to gain system-level access and execute arbitrary code. Despite Microsoft’s subsequent enhancements to secure the service, it remains a high-value target due to its complexity and the legacy code that persists in the system.…
Read More
DeepSeek: China’s open source AI fuels national security paradox | VentureBeat
Summary: DeepSeek has introduced its R1 model for cybersecurity, utilizing pure reinforcement learning and drastically reducing costs compared to competitors like OpenAI. While the model’s open-source nature is attractive, concerns regarding bias, security vulnerabilities, and the influence of Chinese regulations on data privacy are mounting. Experts warn that the model could reshape industry standards, but serious national security implications must be considered.…
Read More
Summary: Bitdefender Labs has identified an active cyber-espionage campaign by the threat actor UAC-0063, which has shifted from Central Asia to target organizations in various European countries. This expansion highlights growing cybersecurity threats driven by geopolitical tensions in the region. The group employs sophisticated malware and tactics, drawing nuanced comparisons to the Russian APT28 group, albeit without definitive connections.…
Read More
Italian regulator asks DeepSeek for information about data collection
Summary: Italy’s data privacy regulator, Garante, has requested information from the Chinese AI firm DeepSeek regarding its data collection practices. DeepSeek must provide details on personal data sourcing, storage, legal basis, and user notification methods within 20 days. This inquiry comes amid Garante’s strict AI regulations and earlier concerns over ChatGPT usage in Italy.…
Read More
Government ‘doesn’t know how vulnerable its ancient IT systems are to hackers’ | News Politics | Metro News
Summary: A report from the UK’s National Audit Office highlights significant vulnerabilities in the government’s IT systems due to the prevalence of aging legacy systems. The cyber threat to national institutions is described as severe and rapidly advancing, with a notable shortage of skilled cybersecurity personnel further exacerbating the situation.…
Read More
A New Era in Cyber Defense: Unpacking the Impacts of Biden’s Cybersecurity Directive – ThreatMon
Summary: President Biden’s Executive Order on Strengthening and Promoting Innovation in the Nation’s Cybersecurity aims to enhance the United States’ cybersecurity in response to increasing threats from nations like China, Russia, Iran, and North Korea. The order introduces stringent cybersecurity measures for federal entities and contractors while fostering innovation through advanced technologies.…
Read More