The Hacker News

LOTUSLITE Backdoor Targets U.S. Policy Entities Using Venezuela-Themed Spear Phishing

China-linked attackers used Venezuela-themed phishing and DLL side-loading to deploy the LOTUSLITE backdoor against U.S.
Network World

The perfect certificate migration until it wasn’t: How certificates can break RADIUS trusts

RADIUS didn’t fail — certificate trust did, proving one forgotten root CA can bring modern network access to a full stop.