Track East Asia cyber, AI, cloud, and infrastructure risk before it becomes an incident.
A coordinated supply chain attack compromised 144 Mastra npm packages by hijacking a former contributor's account to inject a malicious dependency that steals cryptocurrency and establishes persistence, posing significant risks to AI development workflows and cloud infrastructure environments globally. Read more
Microsoft confirmed active development of a patch for CVE-2026-50656, a zero-day elevation of privilege vulnerability in Microsoft Defender that allows attackers to gain SYSTEM access via a race condition in the Malware Protection Engine, affecting fully patched Windows 10 and 11 systems despite real-time protection being enabled. Read more
ASEC's Ransom & Dark Web Issues Week 2, June 2026 report documents Black X ransomware targeting Korean and U.S. organizations, a data leak from a South Korean education platform on BreachForums by threat actor Hasan, and exposure of French government messaging data on PwnForums, highlighting cross-sector dark web activity. Read more
Oracle has released emergency mitigations for CVE-2026-35273, a critical unauthenticated remote code execution zero-day in PeopleSoft PeopleTools versions 8.61 and 8.62, actively exploited by the ShinyHunters extortion gang in data theft attacks targeting over 100 organizations, primarily in the U.S. education sector. Mandiant confirmed the exploitation chain involving staging servers, MeshCentral agents, and data exfiltration to ShinyHunters-linked infrastructure, with 68 percent of victims in higher education. Read more
TitanCA, a joint project by Singapore Management University and GovTech Singapore, uses a four-module LLM agent pipeline to discover zero-day vulnerabilities, yielding 118 CVEs from 203 confirmed findings in open-source software, demonstrating a practical approach to reducing SAST false positives through AI orchestration. Read more
A new study shows federated learning achieves sepsis prediction accuracy comparable to centralized models using data from three Chinese tertiary hospitals, without sharing raw patient data or enabling reconstruction attacks, offering a privacy-preserving framework for multi-center medical AI collaboration. Read more
A practical guide for global security, cloud, and operations teams to monitor TWCERT/CC’s Taiwan Vulnerability Notes (TVN) feed for early detection of supply-chain risks affecting Taiwan-based software, vendors, and infrastructure. Focuses on actionable workflow steps, ownership, and flexible review practices without implying timeliness or numerical thresholds. Read more
This operational guide details how to build and maintain a vendor hotlist using public security signals from Taiwan, Japan, and Korea. By mapping regional CERT advisories to internal asset inventories, security teams can identify localized supply-chain risks, deduplicate cross-border signals, and establish clear ownership for East Asia-specific vendor monitoring and escalation. Read more
This article provides a practical workflow for maintaining an evidence ladder to assess the strength and reliability of East Asia cyber signals over time. It outlines how to track signal evolution, determine when to upgrade from monitoring to action, and correct prior assumptions transparently without rewriting history. The guidance is designed for security, cloud, and operations teams using Nogosee’s tracker as a monitoring layer. Read more
This workflow defines how to handle vendor boilerplate security posts in Nogosee’s East Asia Cyber & AI Risk Tracker by establishing a monitor-only lane: what gets logged, when to trigger re-review, and what never becomes a thin article. It provides concrete steps, decision criteria, ownership, and escalation guidance for security and operations teams using the tracker as a monitoring layer. Read more