Uniq Consulting and Services Sdn Bhd

23/06/2025

In our fast-paced, interconnected world, the dangers of cyberattacks are becoming more frequent and complex. That’s why it’s more important than ever to stay updated and aware of the risks. Every week, our newsletter offers a simple roundup of the most important news, expert opinions, and practi...

17/06/2025

Cybersecurity experts are sounding the alarm as HijackLoader and DeStealer malware variants ramp up attacks on financial institutions.

- HijackLoader is being used as a modular loader to deploy multiple payloads, including credential stealers and remote access tools.
- DeStealer is a sophisticated infostealer designed to exfiltrate sensitive data from infected systems, including banking credentials and personal information.

These threats are part of a growing trend of targeted attacks on financial services, aiming to:
- Compromise customer data
- Disrupt operations
- Evade detection through stealthy techniques

As financial institutions digitize rapidly, threat actors are evolving just as fast. The need for proactive threat intelligence, zero-trust architectures, and continuous monitoring has never been more urgent.

Let’s stay vigilant and collaborative in defending our digital assets.

Cyber-attacks using HijackLoader and DeerStealer have been identified exploiting phishing tactics via ClickFix

13/06/2025

The emergence of EchoLeak, a zero-click AI vulnerability in Microsoft 365 Copilot, marks a pivotal moment in cybersecurity. This isn’t just a bug—it’s a blueprint for how LLM Scope Violations can be weaponized to exfiltrate sensitive data without any user interaction.

What happened?
- Attackers embedded malicious instructions in seemingly harmless emails.
- When users asked Copilot to perform tasks (e.g., summarize reports), the AI unknowingly mixed sensitive internal data with the attacker’s input.
- The result? Proprietary data leaked via Microsoft Teams and SharePoint URLs, without the user ever clicking anything.

This exploit shows how AI systems can be manipulated from the outside, even when interfaces are locked down. It’s a wake-up call for every organization deploying LLMs and agentic systems.

Key takeaways:
- AI security must go beyond traditional input validation.
- Retrieval-Augmented Generation (RAG) pipelines need stricter context controls.
- Zero-click vulnerabilities are not theoretical, they’re here.

As we embrace AI in enterprise workflows, we must also rethink trust boundaries, context isolation, and prompt injection defenses. The future of AI is powerful, but only if it’s secure.

Critical zero-click AI vulnerability EchoLeak exposed sensitive Microsoft 365 Copilot data; Microsoft patched it to prevent data leaks.

13/06/2025

A new report from Veracode reveals a sobering truth: 80% of government agencies are sitting on software vulnerabilities that have gone unaddressed for over a year. Even more alarming, 55% have long-standing flaws that could be exploited at any moment.

This isn’t just a tech issue. It’s a trust issue. It’s a national resilience issue.

🔍 Why does this matter? Because outdated systems, legacy frameworks, and underfunded IT teams are creating a perfect storm. And while private sector organizations are also struggling, the stakes in the public sector are exponentially higher, impacting millions of citizens.

💡 What can we learn from this?
- Security debt is real, and it compounds over time.
- Legacy systems need modern visibility and integration.
- Third-party and open-source software may be only 10% of the code, but they account for 70% of critical vulnerabilities.

As leaders, we must push for secure-by-design principles, cross-functional collaboration, and real investment in cyber hygiene, not just in tools, but in people and processes.

Let’s not wait for the next breach to act.

A Veracode report reveals that government networks have accumulated years of unresolved security flaws, putting them at serious risk of exploitation.

09/06/2025

Google is investing US$2 billion to build its first data centre and cloud region in Malaysia, located at Elmina Business Park, Greater Kuala Lumpur.

This move is set to:
- Boost Malaysia’s digital economy
- Support AI adoption across industries
- Create 26,500 jobs by 2030
- Contribute over US$3.2 billion to the national GDP

The new cloud region will deliver high-performance, low-latency services to businesses and public sector organizations, while also supporting AI literacy programs for students and educators.

This is a major step forward in Malaysia’s journey to becoming a regional digital hub! 🌐🚀

With support for AI literacy programmes.

09/06/2025

A recent report reveals that 46% of IT leaders are extremely worried about Shadow AI, the use of AI tools without IT’s knowledge or approval.

Why the concern?
- 90% are worried about privacy and security risks
- 80% have already seen negative incidents like data leaks, false results, or legal issues
- 13% reported financial or reputational damage

Unlike traditional shadow IT, Shadow AI is harder to track, and employees may unknowingly expose sensitive data by using tools like ChatGPT or Claude AI without proper safeguards.

As AI adoption grows, so do the risks. It’s time for organizations to:
- Educate teams on safe AI use
- Implement clear AI usage policies
- Monitor and manage AI tools across departments

Shadow AI isn’t just a tech issue; it’s a business risk.
Let’s stay ahead of it.

IT leaders are expressing growing concern over the risks of shadow AI, including data leaks, regulatory exposure, and the use of unvetted tools without IT oversight.

05/06/2025

Google’s Threat Analysis Group has exposed UNC6040, a cybercriminal group using vishing (voice phishing) tactics to breach corporate systems. Their method? Impersonating IT support to trick employees into handing over credentials — then using those to bypass MFA and access sensitive data.

- Targets include large enterprises and tech firms
- Attackers use real-time voice calls and social engineering
- MFA fatigue and human error remain major vulnerabilities

✔️ Always verify unexpected IT support calls
✔️ Use phishing-resistant MFA methods
✔️ Educate teams on social engineering red flags

Cyber threats are evolving so must our awareness.

Google has uncovered a vishing campaign by UNC6040 targeting Salesforce users through fake Data Loader apps.

05/06/2025

Microsoft is investing heavily in AI-driven cybersecurity across Europe, aiming to strengthen digital defenses amid rising cyber threats. With a €3.2 billion investment in Germany and expanded operations in the UK and other EU countries, the tech giant is:

🔐 Enhancing AI capabilities to detect and respond to threats faster
🏢 Expanding data center infrastructure to support secure cloud services
🤝 Collaborating with governments and industries to build cyber resilience

As cyberattacks grow more sophisticated, this move signals a global shift toward AI-first security strategies, and Europe is at the forefront.

💬 What are your thoughts on AI’s role in future cybersecurity?

The US tech giant’s cybersecurity effort is part of a wider push to increase its operations in Europe.

04/06/2025

OpenAI is now rolling out memory features to free ChatGPT users, marking a major step forward in personalized AI experiences.

What does this mean?
✅ ChatGPT can now remember your preferences, past interactions, and writing style
✅ You’ll get more consistent, tailored responses over time
✅ You can view, manage, or delete memory anytime, full control stays with you

This upgrade brings enterprise-level personalization to the everyday user, a big leap in making AI more intuitive, helpful, and human-like.

Memory is being rolled out gradually and will be on by default once available. You’ll see a notification when it’s live in your account.

What do you think, exciting or concerning?

ChatGPT's memory feature is now better and capable of referencing past conversations for free accounts.

03/06/2025

In a landmark move, Microsoft, CrowdStrike, Palo Alto Networks, Google, and Mandiant have joined forces to tackle one of cybersecurity’s most persistent pain points: inconsistent threat actor naming.

Different vendors often track the same threat group under different names — leading to confusion, delayed responses, and fragmented intelligence.
Example: The group known as Scattered Spider is tracked as Octo Tempest by Microsoft and Muddled Libra by Palo Alto Networks.

The solution? A shared threat actor matrix that maps aliases across vendors, enabling faster attribution, clearer communication, and more effective defense.

“Aligning on naming conventions isn’t just a nice-to-have — it’s a game-changer,” said Michael Sikorski, CTO at Palo Alto Networks.

This collaboration is a major step toward streamlined threat intelligence and faster incident response. It’s not about giving up naming autonomy, it’s about building a common language for defenders.

After years of confusion, leading threat-intelligence companies will streamline how they name threat groups.  

31/05/2025

Happy Dragon Boat Day!

30/05/2025

Security researchers at Fortinet have uncovered a highly evasive Remote Access Trojan (RAT) that operated undetected for weeks — by corrupting its own PE and DOS headers to break traditional malware analysis tools.

- In-memory ex*****on inside dllhost.exe, avoiding disk-based detection.
- Corrupted headers made it nearly impossible to locate the malware’s entry point.
- Manual API mapping and memory analysis were required to reverse-engineer its behavior.
- Encrypted C2 communications using custom XOR-based algorithms.
- Advanced capabilities like screenshot capture, service control, and remote shell access.

This is a masterclass in stealth. It shows how attackers are weaponizing legitimate processes and breaking conventional detection methods. If your defenses rely solely on file-based scanning or signature detection, you’re already behind.

Modern threats demand modern defenses — memory forensics, behavioral analytics, and proactive threat hunting are no longer optional.

Fortinet has identified a new Windows RAT operating stealthily on compromised systems with advanced evasion techniques