Track East Asia cyber, AI, cloud, and infrastructure risk before it becomes an incident.
This tutorial guides East Asia-facing security teams on how to map observed AI misuse and model abuse signals to MITRE ATLAS techniques using a structured, uncertainty-aware approach. It emphasizes separating public facts from speculation, assigning clear ownership, and establishing flexible review workflows without relying on numeric thresholds or rigid escalation rules. Read more
Use the SLSA framework to evaluate supplier build integrity through neutral questions on provenance, signing, reproducibility, dependency pinning, and evidence artifacts—without accepting marketing claims as proof. This checklist supports East Asia-facing security, cloud, and supply-chain teams in verifying supplier assertions. Read more
Organizations can transform Korea KISA/KrCERT vulnerability notices into an auditable internal patch-SLA workflow by establishing clear triage steps, ownership rules, severity interpretation, exception tracking, and integration with existing vulnerability management systems—without imposing rigid thresholds or inventing unsupported procedures. Read more
This tutorial guides security teams in East Asia and globally on how to map public incident reports to MITRE ATT&CK techniques while preserving uncertainty, avoiding unwarranted attribution, and maintaining evidence traceability. It provides step-by-step workflow guidance for analysts, threat intel teams, and incident responders to use ATT&CK as a neutral taxonomy for structuring findings without inflaming confidence beyond what the source supports. Read more
This workflow guides East Asia security teams on using FIRST’s EPSS model and CISA’s KEV catalog to prioritize CVEs without panic, explaining EPSS as a probability-based exploit predictor, when KEV confirms active exploitation, and how to document exceptions in vulnerability management processes. Read more
This practical tutorial guides security teams in using the CISA Known Exploited Vulnerabilities (KEV) catalog to create a focused, actionable patch watchlist for East Asia-based suppliers. It outlines steps to map KEVs to supplier software inventories, assign ownership, set flexible escalation thresholds, and maintain evidence records—without relying on numeric thresholds or rigid schedules. Read more
ASEC’s Ransom & Dark Web Issues report for week 3 of May 2026 details a ransomware attack on South Korean cosmetics firm Nova, alleged data leakage from an open-source visualization platform attributed to CoinbaseCartel, and claimed source-code theft and sale from a developer platform by TeamPCP, based on AhnLab TIP monitoring. Read more
Microsoft's Digital Crimes Unit has disrupted 'SignSpace,' a prolific malware-signing-as-a-service operation run by the threat actor Fox Tempest. By weaponizing Microsoft's own Artifact Signing system via stolen identities, the actor provided valid digital certificates to ransomware groups including Vanilla Tempest, Akira, and Qilin, allowing malicious payloads to bypass enterprise security controls globally. Read more
The paper proposes a novel approach to decentralize federated learning using blockchain technology and multi-task peer prediction to address the computational burden of contribution measurement on blockchain systems. It leverages smart contracts and cryptocurrencies to incentivize honest participation in AI training. Read more
Use Nogosee’s public procurement and MOPS incident records to compare cybersecurity spending signals with disclosed incidents in Taiwan as separate data streams. This workflow guides security, risk, and procurement teams to independently review tenders, awards, and incident statements without implying causation, using Nogosee as a monitoring layer for source verification and contextual review. Read more