State-Backed HazyBeacon Malware Uses AWS Lambda to Steal Data from SE Asian Governments

July 15, 2025

Governmental organizations in Southeast Asia are the target of a new campaign that aims to collect sensitive information by means of a previously undocumented Windows backdoor dubbed HazyBeacon.
The activity is being tracked by Palo Alto Networks Unit 42 under the moniker CL-STA-1020, where “CL” stands for “cluster” and “STA” refers to “state-backed motivation.”
“The threat actors behind this

Source: Read More

Previous ArticleAustralia Adopts Global OT Cybersecurity Standards to Secure Energy, Water, and Smart Infrastructure

Next Article Securing Agentic AI: How to Protect the Invisible Identity Access

Highlights

CVE-2025-32877 – COROS PACE 3 BLE Authentication Bypass

June 20, 2025

CVE ID : CVE-2025-32877

Published : June 20, 2025, 2:15 p.m. | 28 minutes ago

Description : An issue was discovered on COROS PACE 3 devices through 3.0808.0. It identifies itself as a device without input or output capabilities, which results in the use of the Just Works pairing method. This method does not implement any authentication, which therefore allows machine-in-the-middle attacks. Furthermore, this lack of authentication allows attackers to interact with the device via BLE without requiring prior authorization.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

State-Backed HazyBeacon Malware Uses AWS Lambda to Steal Data from SE Asian Governments

GPT-5 is Coming: Revolutionizing Software Testing

Win the Accessibility Game: Combining AI with Human Judgment

CVE-2025-48376 – DNN External URL Site Export RCE

Agents bring the role of AI in development from reactive to proactive

AlphaFold 3 predicts the structure and interactions of all of life’s molecules

I switched to a Hall Effect keyboard to see if magnets make all the difference, and I have to admit — I’m impressed

CVE-2025-32877 – COROS PACE 3 BLE Authentication Bypass

FM-Intent: Predicting User Session Intent with Hierarchical Multi-Task Learning

Professor Rita McGrath on Leading in Times of Uncertainty

CVE-2025-43487 – Poly Clariti Manager Sudo Privilege Escalation Vulnerability

State-Backed HazyBeacon Malware Uses AWS Lambda to Steal Data from SE Asian Governments

Related Posts