A North Korean-backed group known as the Famous Chollima or Contagious Interview has been luring job seekers into installing malware using fake job interviews. To obfuscate its activities, the group created three bogus crypto firms —BlockNovas LLC, Angeloper Agency, and SoftGlide LLC— and advertised-nonexistent jobs on legitimate online platforms. When applicants receive supposed “interview materials,” these actually contain malware that enables data theft. The group sometimes uses AI-generated images and false identities to establish fake company profiles.
.webp?w=0&resize=0,0&ssl=1 "Apache Tomcat Vulnerability Let Bypass Rules & Trigger DoS Condition")
Apache Tomcat Vulnerability Let Bypass Rules & Trigger DoS Condition
The Apache Software Foundation announced a severe vulnerability (CVE-2025-31650) in Apache Tomcat, allowing attackers to exploit HTTP priority headers, leading to denial-of-service conditions. Affected versions
.webp?w=0&resize=0,0&ssl=1 "CISA Issues Warning on Commvault Web Server Flaw Exploited in the Wild")
