Event Summary In February 2025, the North Korea-linked APT group Lazarus launched a highly sophisticated supply chain attack against the prominent cryptocurrency exchange Bybit, successfully stealing over 400,000 ETH and stETH—valued at approximately $1.5 billion. This incident marks the largest single security breach in the global cryptocurrency sector to date....
Blog
Top Security Incidents of 2025: The Emergence of the ChainedShark APT Group
In 2025, NSFOCUS Fuying Lab disclosed a new APT group targeting China’s scientific research sector, dubbed "ChainedShark" (tracking number: Actor240820). Been active since May 2024, the group’s operations are marked by high strategic coherence and technical sophistication. Its primary targets are professionals in Chinese universities and research institutions specializing in international...
OpenClaw Open Source AI Agent Application Attack Surface and Security Risk System Analysis
Background In early 2026, OpenClaw (formerly known as Clawdbot and Moltbot), an open-source autonomous AI agent project, quickly attracted global attention. As an automated intelligent application running in the form of a chatbot, it allows users to input natural language commands through Web pages and IM tools (such as Telegram,...
An Overview of 2025 Global APT Attack Landscape
In 2025, the global cybersecurity situation continued to deteriorate, with a significant rise in the use of 0-day vulnerabilities in Advanced Persistent Threat (APT) attacks, which became a key driver of accelerating threats. Numerous 0-day vulnerabilities were exploited in operating systems, browsers, network devices, and security software, enabling attackers to...
Aplicações Web: o que são, tipos e vantagem
A tecnologia avançou muito nos últimos anos e, com isso, as pessoas têm acesso a muitos recursos e aplicações que melhoram a vida de todos. Um desses recursos são as aplicações web, que estão ficando cada vez mais comuns. Essas aplicações web são criadas usando linguagens de programação como HTML,...
AI-PTS: Breaking Traditional Barriers, Revolutionizing Penetration Testing
AI Penetration Testing System (AI-PTS) Leveraging AI to empower penetration testing, the AI-PTS integrates AI technology with traditional penetration testing methods. It delivers an AI+ defense system tailored for real-world attack scenarios. The AI-PTS is designed to help security professionals conduct non-destructive security assessments for networks, systems, and applications, significantly...
