Floor coverings distributor Headlam Group said on Tuesday there had been an unauthorized access to some of its computer systems, resulting in some data being accessed by the intruders.

According to recent research, OceanLotus (also known as APT32) has launched a campaign against the Cambodian government leveraging an ASEAN-themed spear-phishing attack.

Data exposed in the attack may have included patients’ names, medical record numbers, account numbers, dates of birth, SSNs, dates and types of services, phone numbers, addresses, and insurance info.

Bitdefender researchers discovered a Chinese APT group stealthily attack Southeast Asian governments. Although much of the C&C servers were found to be offline, the operations are still functional.

A new gang has been taking over vulnerable WordPress sites to install hidden e-commerce stores with the purpose of hijacking the site’s search engine ranking and reputation and promote online scams.

Jamie Hart, a cyber threat intelligence analyst at Digital Shadows, said that the trend of targeting individual and business tax filings for ransomware attacks has been on the rise.

Hacktivists have reportedly downed the website of Uganda Police in the wake of protests triggered by the arrest of Robert Kyagulanyi Ssentamu, also known by his pop star alias, Bobi Wine.

Ransomware, already a major enterprise threat, is growing more problematic as operators brainstorm new ways to make their attacks easier to launch and more devastating for victims.

There were a total of 30.7 million files, including agent names, emails, password keys, security tokens, owner/client data, and other internal records, exposed to anyone with an internet connection.

VMware has released temporary workarounds to address a critical vulnerability in its products that could be exploited by an attacker to take control of an affected system.