AbejaIT AbejaIT

Blog

Technology news, cybersecurity, AI and IT infrastructure — our articles and carefully curated industry updates.

We publish our own analysis and practical insights from AbejaIT projects, and we also aggregate and summarize valuable content from trusted industry sources. You will find updates on software, cloud, security, artificial intelligence and IT trends — written for both business decision-makers and technical teams.

DoJ Seizes Huione Cloud Account Tied to Cyber Scam Money Laundering

DoJ Seizes Huione Cloud Account Tied to Cyber Scam Money Laundering

The U.S. Department of Justice seized a cloud account linked to Cambodia's HuiOne Group conglomerate, accused of facilitating money laundering from cybercrime proceeds. The Treasury Department simultaneously sanctioned 9 individuals and 26 entities tied to Prince Group. The case shows cloud infrastructure can be used in advanced crime financing schemes—prompting IT organizations to monitor cloud environments more closely.

Read more
Dawn of the Apex Agentic Adversary

Dawn of the Apex Agentic Adversary

Cybersecurity enters a disturbing new era—machine-speed threats where traditional response windows measured in days or weeks become relics of the past. Autonomous agentic AI systems allow attackers to automate the entire attack chain—from vulnerability discovery to exploitation—before organizations can deploy patches. For B2B IT sector companies, this means fundamentally reviewing security strategy and shifting from reactive threat detection to proactive, automated defense.

Read more
Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks

Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks

Security researchers discovered a critical class of CI/CD pipeline vulnerabilities named Cordyceps, enabling takeover of GitHub repositories across 300+ organizations—including giants like Microsoft, Google, and Apache. The flaw allows attackers to manipulate open-source software supply chains, posing serious production code integrity threats. Organizations using GitHub Actions should urgently review workflow configurations for this vulnerability pattern.

Read more
Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered

Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered

An international law enforcement operation, with cooperation from Bitdefender, ESET, and Microsoft, dismantled criminal infrastructure behind Amadey and StealC malware. The operation recovered 27 million stolen credentials, aiming to disrupt cybercriminal supply chains used for ransomware and financial fraud attacks. This is another example of public-private sector effectiveness against advanced digital threats.

Read more
CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited

CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited

CISA warns of active exploitation of critical vulnerability CVE-2025-67038 (CVSS 9.8) in Lantronix EDS5000 devices enabling remote code execution. Federal FCEB agencies have until June 26, 2026 to deploy available fixes. Organizations using these devices should immediately verify software versions and apply vendor updates.

Read more
Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access

Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access

A critical vulnerability in Cisco Catalyst SD-WAN (CVE-2026-20245, CVSS 7.8) was actively exploited by unknown attackers for at least two months before official disclosure. The flaw allows a local authenticated user to escalate privileges and execute arbitrary commands as root. Organizations using Cisco SD-WAN solutions should immediately apply available security patches.

Read more
New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns

New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns

Symantec and Carbon Black researchers identified new advanced backdoor malware named Mistic (also known as MLTBackdoor), active since April 2026 and targeting insurance, education, IT, and professional services organizations. The campaign is linked to initial access broker (IAB) KongTuke, using ClickFix techniques and ModeloRAT trojan for distribution. Companies in these sectors should urgently verify threat detection mechanisms and update incident response procedures.

Read more
New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis

New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis

New macOS malware named Gaslight, written in Rust, has been discovered using prompt injection to manipulate AI tools used by security analysts. The attack aims to convince AI-based systems to refuse or abort analysis of the malicious file, effectively hindering detection. This case shows cybercriminals actively adapting methods to environments where AI supports threat intelligence processes.

Read more
Surviving the Mythos Era: Richard Bejtlich on the Case for NDR

Surviving the Mythos Era: Richard Bejtlich on the Case for NDR

Modern SOC teams have vast amounts of telemetry data, yet often cannot answer key questions during incident analysis. Richard Bejtlich argues that alert response alone is insufficient—effective investigation requires full network context provided by Network Detection and Response (NDR). In an era of increasingly complex threats, NDR is becoming not an option but a foundation of mature security strategy.

Read more