Cybersecurity

A security flaw in the U.S. rail system, identified in 2012, allows remote activation of emergency brakes using readily available technology. The vulnerability lies in the End-of-Train (EoT) modules, which lack robust security. The Association of American Railroads (AAR) reportedly dismissed the initial warnings. Only after a recent advisory from CISA did the AAR announce an upgrade plan, expected to be fully deployed by 2027, fifteen years after the flaw was first discovered.

Doxxing, involving weaponized personal data for harassment, is escalating in China as a severe digital threat. Tech giant Tencent, targeting this on its platform QQ (597 million users), purged over 100,000 abusive posts, terminated 10,000+ harassment groups, and employs advanced algorithms/AI detection. This crackdown aligns with China’s intensified cyber governance and foreshadows stricter privacy law enforcement. Tencent’s approach, utilizing tech like neural networks and judicial reporting, may set a precedent for combating industrialized “doxxing economies” and balancing innovation with safety in web ecosystems.

Ingram Micro Holding Corporation is experiencing a system outage due to a detected ransomware attack on its internal systems. The company has taken affected systems offline, engaged cybersecurity experts, and notified law enforcement. They are working to restore operations and apologize for disruptions.

A former IT technician, Mohammed Umar Taj, was sentenced to seven months and 14 days in prison for a retaliatory cyberattack against his former employer after termination. The attack caused significant financial damage, reputational harm, and disrupted operations for clients internationally. This case highlights the severe consequences of digital revenge and the critical importance of robust cybersecurity for businesses.

ENISA’s adoption of the EU Cyber-Crisis Management Blueprint, requiring SBOM data exchange across borders, presents a significant opportunity for Cybeats Technologies Corp. The Blueprint mandates SBOMs, transforming them from a best practice to a legal requirement. This strengthens the Cyber Resilience Act and fuels demand for continuous analysis platforms. Cybeats, with its SBOM Studio, is well-positioned to address these evolving EU regulations and compliance needs.

P2P Group Ltd. partners with PQStation, a quantum-resilient cybersecurity leader, to secure critical infrastructure, targeting markets in the US, Canada, and Europe. The collaboration integrates QSTunnel, a post-quantum cryptographic platform, enabling quantum-safe encryption deployment. This initiative addresses growing regulatory demands and military adoption of quantum-safe standards, aiming to equip Wi-Fi networks and chipsets with enhanced security for various sectors while projecting significant revenue growth over three years.

A recent report accuses five Taiwanese cyber espionage groups (APT-C-01, 62, 64, 65, and 67) of orchestrating attacks on mainland systems. The report, which directly links these groups to Taiwan’s “Cyber Warfare Unit,” highlights APT-C-67 (Ursula)’s alleged involvement in recent attacks, including targeting critical infrastructure. Experts note the groups utilize known vulnerabilities and rely on less sophisticated techniques, making them easier to detect. The report also highlights broader cyber threats and emphasizes AI’s role in future cybersecurity.

Cisco’s new global study reveals IT leaders are modernizing their networks to support AI. 97% recognize network modernization as crucial for AI, IoT, and cloud technologies. The study highlights the need for robust, resilient networks to mitigate outages, which cost businesses $160 billion annually. Upgrading infrastructure is expected to drive revenue, reduce costs, and improve customer experiences, backed by C-suite support.

WISeKey International Holding Ltd. announced a minor change to its 2025 Annual General Meeting (AGM), postponing it from June 19 to June 27, 2025, at the same time and location in Zurich, Switzerland. The agenda and proposals remain unchanged. WISeKey focuses on cybersecurity, blockchain, and IoT solutions, securing digital identities and the Internet of Everything.

JOYY Inc. (NASDAQ: JOYY) reported mixed Q1 2025 results, with lower overall revenue but improved profitability driven by diversification and cost management. Non-livestreaming revenue surged. The company returned capital to shareholders via dividends and share repurchases. User metrics showed declines, but net cash remains strong. JOYY forecasts revenue growth for Q2, emphasizing its strategic shift and diversified business model, particularly in advertising.