UNC6384 Weaponizes ZDI-CAN-25373 Vulnerability to Deploy PlugX Against Hungarian and Belgian Diplomatic Entities

Arctic Wolf Labs has identified an active cyber espionage campaign by Chinese-affiliated threat actor UNC6384 targeting European diplomatic entities in Hungary, Belgium, and additional European nat...

Oct 30, 2025 CYBERSECURITY

Threat Actors Utilize AdaptixC2 for Malicious Payload Delivery

A surge in cybercriminal abuse of AdaptixC2, a free adversarial emulation framework created initially for penetration testers, has been detected in active ransomware operations. AdaptixC2 operates...

Oct 30, 2025 TOOLS

Proton Uncovers Hidden Data Leaks From the Dark Web

Proton has launched the Data Breach Observatory to serve as a reporting platform that monitors and publishes data breaches found on the dark web. Unlike reports that rely on voluntary disclosures, ...

Oct 30, 2025 SECURITY

New "Brash" Exploit Crashes Chromium Browsers Instantly with a Single Malicious URL

At its core, Brash stems from the lack of rate limiting on “document.title” API updates, which, in turn, allows for bombarding millions of document object model mutations per second, causing the we...

Oct 30, 2025 SECURITY

Australian Police Use 'Crypto Safe Cracker' to Access $6M Stash

In brief: AFP Commissioner Krissy Barrett revealed Wednesday how a data scientist unlocked over $6 million from a crypto wallet held by an “alleged criminal.” The data scientist was able to access...

Oct 30, 2025 ARREST

Russian hackers, likely linked to Sandworm, exploit legitimate tools against Ukrainian targets

Russian threat actors, likely linked to the APT Sandworm, targeted Ukrainian organizations to steal sensitive data and maintain long-term network access, Symantec Threat Hunter Team and Carbon Blac...

Oct 29, 2025 APT

New AI-Targeted Cloaking Attack Tricks AI Crawlers Into Citing Fake Info as Verified Facts

Cybersecurity researchers have flagged a new security issue in agentic web browsers like OpenAI ChatGPT Atlas that exposes underlying artificial intelligence (AI) models to context poisoning attack...

Oct 29, 2025 CYBERSECURITY

Logins.zip Leverages Chromium Zero-Day Stealthy Infostealer Builder Promises 99% Credential Theft in Under 12 Seconds

Logins.zip operates as a browser-based builder, allowing operators to generate custom malware stubs without technical expertise. Once deployed, the stub which is clocking in at a mere ~150KB employ...

Oct 29, 2025 APT

Hacktivists breach Canada’s critical infrastructure, cyber Agency warns

The Canadian Centre for Cyber Security revealed that hacktivists have repeatedly breached systems of the country’s critical infrastructure. Attackers tampered with industrial controls at a water tr...

Oct 29, 2025 INFRASTRUCTURE

CISA issues ICS advisories on Schneider Electric, Vertikal Systems vulnerabilities; adds DELMIA Apriso flaws to KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) published on Tuesday one ICS (industrial control system) advisory, one ICS medical advisory, and updated an earlier ICS advisory add...

Oct 29, 2025 VULNS

2025-10-29 Daily Vulns

NEW: CVE vendor-product description metric Referenceurl title GithubURL CVE-2024-57412 n/a - n/a An iss...

Oct 29, 2025 VULNERABILITIES

TEE.Fail attack breaks confidential computing on Intel, AMD, NVIDIA CPUs

Academic researchers developed a side-channel attack called TEE.Fail, which allows extracting secrets from the trusted execution environment in the CPU, the highly secure area of a system, such as ...

Oct 28, 2025 RESEARCH

Researchers Expose GhostCall and GhostHire BlueNoroff's New Malware Chains

GhostCall heavily targets the macOS devices of executives at tech companies and in the venture capital sector by directly approaching targets via platforms like Telegram, and inviting potential vic...

Oct 28, 2025 APT

Massive risk 92% of Exchange servers in Germany unprotected after Microsoft support ends

A staggering 92% of on-premises Microsoft Exchange servers in Germany are running outdated versions that will never receive another security patch, according to a warning issued by the German Feder...

Oct 28, 2025 SECURITY

Everest Leaks AT&T Records, Demands M for Dublin Airport Passenger Data

Everest ransomware group leaks alleged AT&T Carrier data, demanding million for Dublin Airport files and million for Air Arabia employee records. An analysis by Hackread.com found that the lea...

Oct 28, 2025 NEWS

Clearview AI faces criminal heat for ignoring EU data fines

Austria-based Noyb (None of Your Business) is targeting the US company and its executives, arguing that if successful, individuals who authorized the data collection could face criminal penalties, ...

Oct 28, 2025 PRIVACY

BiDi Swap The bidirectional text trick that makes fake URLs look real

Varonis Threat Labs has highlighted a decade-old vulnerability called BiDi Swap that enables URL spoofing. This technique exploits how browsers handle Right-to-Left (RTL) and Left-to-Right (LTR) sc...

Oct 28, 2025 RESEARCH

Aisuru Botnet Shifts from DDoS to Residential Proxies

Aisuru, the botnet responsible for a series of record-smashing distributed denial-of-service (DDoS) attacks this year, recently was overhauled to support a more low-key, lucrative, and sustainable ...

Oct 28, 2025 CYBERSECURITY

Qilin ransomware escalates rapidly in 2025, targeting critical sectors with 700 attacks amid RansomHub shutdown

As Qilin marked its 700th ransomware attack of 2025, the group further cemented its position as the most prolific ransomware operator in recent years. Comparitech notes that only ten months into th...

Oct 27, 2025 MALWARE

OpenAI Atlas Browser Vulnerability Allows Malicious Code Injection into ChatGPT

A critical vulnerability has been discovered in OpenAI’s new ChatGPT Atlas browser, enabling attackers to inject malicious code into ChatGPT’s memory and potentially execute remote code on user sys...

Oct 27, 2025 CYBERSECURITY