OpenAI Atlas Browser Vulnerability Allows Malicious Code Injection into ChatGPT

A critical vulnerability has been discovered in OpenAI’s new ChatGPT Atlas browser, enabling attackers to inject malicious code into ChatGPT’s memory and potentially execute remote code on user sys...

Oct 27, 2025 CYBERSECURITY

Iran's school for cyberspies could've used a few more lessons in preventing breaches

UK-based Iranian activist Nariman Gharib claimed to have been sent a copy of the data that was stolen from Ravin Academy and has made it publicly available via a dedicated website. The stolen data ...

Oct 27, 2025 APT

Hackers exploiting Windows updates Microsoft urges users to patch

Hackers are exploiting a Windows Server vulnerability that can turn system updates into a malware delivery machine. Microsoft is urging users to download patches. Microsoft has released an emergen...

Oct 27, 2025 SECURITY

Europol Warns of Rising Threat From Caller ID Spoofing Attacks

A growing wave of caller ID spoofing attacks, in which criminals falsify the number displayed on a phone to appear legitimate, has prompted Europol to call for urgent, coordinated action across Eur...

Oct 27, 2025 SECURITY

Chrome Zero-Day Exploitation Linked to Hacking Team Spyware

The exploitation of the first Chrome zero-day of 2025 is linked to tools used in attacks involving Hacking Team’s new spyware, Kaspersky reports.\n\nThe exploited Chrome vulnerability, tracked as C...

Oct 27, 2025 VULNS

Everest Ransomware Says It Stole 1.5M Dublin Airport Passenger Records

Everest ransomware group claims to have stolen 1.5 million passenger records from Dublin Airport and personal data of 18,000 Air Arabia employees in latest breaches. The Dublin Airport breach incl...

Oct 26, 2025 CYBERSECURITY

706,000+ BIND 9 Resolver Instances Vulnerable to Cache Poisoning Exposed Online – PoC Released

A high-severity vulnerability in BIND 9 resolvers has been disclosed, potentially allowing attackers to poison caches and redirect internet traffic to malicious sites. Tracked as CVE-2025-40778, th...

Oct 26, 2025 CYBER SECURITY NEWS

LockBit 5.0 Actively Attacking Windows, Linux, and ESXi Environments

The notorious LockBit ransomware operation has resurfaced with a vengeance after months of dormancy following Operation Cronos takedown efforts in early 2024. Despite law enforcement disruptions an...

Oct 25, 2025 MALWARE

Hackers exploiting critical vulnerability in Windows Server Update Service

The vulnerability, tracked as CVE-2025-59287, involves deserialization of untrusted data and could allow intruders to execute code without authorization. Researchers at Huntress said they have seen...

Oct 25, 2025 SECURITY

Timestomping a PE compile timestamp - adversary tradecraft and detection

If you’ve wondered how advanced adversaries (red teams or real threat actors) try to blend into a target system or deceive CTI/IR analysts, this post shows how COFF timestomping (overwriting a PE’s...

Oct 23, 2025 INFORMATION SECURITY

IR Trends Q3 2025 ToolShell attacks dominate, highlighting criticality of segmentation and rapid response

Threat actors predominately exploited public-facing applications for initial access this quarter, with this tactic appearing in over 60 percent of Cisco Talos Incident Response (Talos IR) engagemen...

Oct 23, 2025 RESEARCH

Buying Spying - How the commercial surveillance industry works and what can be done about it

Google’s Threat Analysis Group (TAG) has released an in-depth report titled “Buying Spying,” detailing the inner workings of the commercial surveillance vendor (CSV) industry and its significant th...

Oct 23, 2025 RESEARCH

Anomali Cyber Watch - Nimbus Manticore, Spoofed IC3 Portals, a Record-Breaking DDoS Attack, and More

The Iranian APT group Nimbus Manticore is expanding its espionage activities into Western Europe, targeting defense, aerospace, and telecommunications organizations. Researchers have observed the g...

Oct 23, 2025 CYBERSECURITY

Agenda Ransomware Deploys Linux Variant on Windows Systems Through Remote Management Tools and BYOVD Techniques

Trend Research has identified a sophisticated Agenda ransomware attack, also known as Qilin, deploying a Linux-based ransomware binary on Windows systems, bypassing traditional Windows-centric secu...

Oct 23, 2025 MALWARE

TARmageddon Flaw in Popular Rust Library Leads to RCE

Tracked as CVE-2025-62518 (CVSS score of 8.1) and dubbed TARmageddon, the security defect is described as a desynchronization issue that occurs during the processing of nested TAR files with a spec...

Oct 22, 2025 SECURITY

SocGholish Malware Using Compromised Sites to Deliver Ransomware

This advanced threat, also known as FakeUpdates, is not just a single piece of malicious code; SocGholish operates as a sophisticated Malware-as-a-Service (MaaS) platform. This service allows affil...

Oct 22, 2025 MALWARE

Jaguar Land Rover hack cost UK economy an estimated $2.5 billion, report says

The hack of Jaguar Land Rover, owned by India’s Tata Motors, cost the British economy an estimated 1.9 billion pounds ($2.55 billion) and affected over 5,000 organisations, an independent cybersecu...

Oct 22, 2025 NEWS

Chinese Threat Actors Exploit ToolShell SharePoint Flaw Weeks After Microsoft's July Patch

Threat actors with ties to China exploited the ToolShell security vulnerability in Microsoft SharePoint to breach a telecommunications company in the Middle East after it was publicly disclosed and...

Oct 22, 2025 APT

2025-10-22 Daily Vulns

NEW: CVE vendor-product description metric Referenceurl title GithubURL CVE-2025-11534 Raisecomm - RAX701-GC-...

Oct 22, 2025 VULNERABILITIES

Vidar Stealer 2.0 adds multi-threaded data theft, better evasion

According to an announcement from the developer this month, Vidar 2.0 has been rewritten in C, supports multi-threading data stealing, bypasses Chrome’s app-bound encryption, and features more adva...

Oct 21, 2025 MALWARE