Cybersecurity Headlines NATO adopts Apple, Education and Healthcare backdoor, Apex One flaws
24 snips
Feb 27, 2026 NATO clears iPhones and iPads for classified work. A DoDoor backdoor is exploiting DNS over HTTPS and social engineering against US education and healthcare. Trend Micro warns of critical remote code execution flaws in Apex One. A botnet is hiding command infrastructure on the Polygon blockchain.
AI Snips
Chapters
Transcript
Episode notes
iPhone And iPad Cleared For NATO Classified Use
- Apple iPhone and iPad are now approved for NATO-restricted classified work without special software.
- The devices' native Mail, Calendar, and Contacts apps are listed in NATO's Information Assurance Products Catalog as providing secure access to classified data.
DoDor Backdoor Targets US Education And Healthcare
- A previously unknown group Cisco calls UAT10027 is deploying a DoH-based backdoor named DoDor against U.S. education and healthcare.
- The campaign uses phishing to run PowerShell and hides C2 behind CloudFlare; attributes resemble North Korean Lazarus/Kimsuky tradecraft.
Restrict Access To Externally Exposed Apex One Consoles
- Trend Micro patched two critical Apex One RCE vulnerabilities and warns that exploit requires console access.
- Customers with externally exposed Apex One consoles should restrict source IPs or apply mitigations immediately.