SECURITY 130
- Exploitation of React2Shell Surges
- Despite Microsoft’s secret patch, LNK loophole remains viable for hackers to deliver malware
- Google fixes two Android zero days exploited in attacks, 107 flaws
- Glassworm malware returns in third wave of malicious VS Code packages
- Shai-hulud 2.0 Campaign Targets Cloud and Developer Ecosystems
- Over 390 Abandoned iCalendar Sync Domains Could Expose ~4 Million Devices to Security Risks
- Old tech, new vulnerabilities - NTLM abuse, ongoing exploitation in 2025
- Russian RomCom Utilizing SocGholish to Deliver Mythic Agent to U.S. Companies Supporting Ukraine
- Is Your Android TV Streaming Box Part of a Botnet?
- Weaponized file name flaw makes updating glob an urgent job
- Critical 7 Zip Vulnerability With Public Exploit Requires Manual Update
- WrtHug Exploits Six ASUS WRT Flaws to Hijack Tens of Thousands of EoL Routers Worldwide
- Mac users warned about new DigitStealer information stealer
- Critics scoff after Microsoft warns AI feature can infect machines and pilfer data
- Active Directory Trust Misclassification - Why Old Trusts Look Like Insecure External Trusts
- Agents built into your workflow - Get Security Copilot with Microsoft 365 E5
- RondoDox Exploits Unpatched XWiki Servers to Pull More Devices Into Its Botnet
- Microsoft Patch Tuesday for November 2025 — Snort rules and prominent vulnerabilities
- Google sounds alarm on self-modifying AI malware
- How an Attacker Drained 28M from Balancer Through Rounding Error Exploitation
- Exploiting Microsoft Teams Impersonation and Spoofing Vulnerabilities Exposed
- Chrome can now store your driver's license and passport, but is that safe?
- 11 ways to delete or hide yourself from the internet - and protect your privacy
- Drawn to Danger Windows Graphics Vulnerabilities Lead to Remote Code Execution and Memory Exposure
- Attackers targeting unpatched Cisco kit notice malware implant removal, install it again
- New "Brash" Exploit Crashes Chromium Browsers Instantly with a Single Malicious URL
- TEE.Fail attack breaks confidential computing on Intel, AMD, NVIDIA CPUs
- BiDi Swap The bidirectional text trick that makes fake URLs look real
- Hackers exploit 34 zero-days on first day of Pwn2Own Ireland
- Data brokers are constantly doxing us, and we can’t do anything about it
- Whisper 2FA Behind One Million Phishing Attempts Since July
- Elasticsearch Leak Exposes 6 Billion Records from Scraping, Old and New Breaches
- Unverified COTS hardware enables persistent attacks in small satellites via SpyChain
- New Android Pixnapping attack steals MFA codes pixel-by-pixel
- New Oracle E-Business Suite Bug Could Let Hackers Access Data Without Login
- SquareX Shows AI Browsers Fall Prey to OAuth Attacks, Malware Downloads and Malicious Link Distribution
- SaaS Breaches Start with Tokens - What Security Teams Must Watch
- New Mic-E-Mouse Attack Shows Computer Mice Can Capture Conversations
- Ghost in the Cloud Weaponizing AWS X-Ray for Command & Control
- Massive network of 30,000 websites filters victims before delivering scams or malware
- Broadcom Fails to Disclose Zero-Day Exploitation of VMware Vulnerability
- SVG Security Analysis Toolkit to Detect Malicious Scripts Hidden in SVG Files
- Microsoft Flags AI-Driven Phishing LLM-Crafted SVG Files Outsmart Email Security
- Cisco warns of IOS zero-day vulnerability exploited in attacks
- US Secret Service dismantled covert communications network near the U.N. in New York
- Microsoft Fixed Entra ID Vulnerability Allowing Global Admin Impersonation
- ShadowLeak Exploit Exposed Gmail Data Through ChatGPT Agent
- Researchers expose MalTerminal, an LLM-enabled malware pioneer
- Microsoft Entra ID flaw allowed hijacking any company's tenant
- Heathrow Airport Cyberattack What Happened, Who’s Affected, and What CISOs Should Know
- Unmasking Akira The ransomware tactics you can’t afford to ignore
- Google Chrome 0-Day Vulnerability Actively Exploited in the Wild – Patch Now
- APT37 Targets Windows with Rust Backdoor and Python Loader
- Severe Hikvision HikCentral Product Flaws What You Need to Know
- Google fixes actively exploited Android flaws in September update
- Azure AD Credentials Exposed in Public App Settings File
- WhatsApp patches vulnerability exploited in zero-day attacks
- Apple rushes out fix for active zero-day in iOS and macOS
- Major password managers can leak logins in clickjacking attacks
- Flaws in Software Used by Hundreds of Cities and Towns Exposed Sensitive Data
- New Research Links VPN Apps, Highlights Security Deficiencies
- New Ghost-tapping Attacks Steal Customers’ Cards Linked to Services Like Apple Pay and Google Pay
- EncryptHub Abuses Brave Support in new Campaign Exploiting- MSC Eviltwin Flaw
- New 'Curly COMrades' APT Using NGEN COM Hijacking in Georgia, Moldova Attacks
- OWASP AIVSS targets agentic AI risk
- Critical Vulnerability Impacting Over 100K Sites Patched in Everest Forms Plugin
- Smart Contract Scams | Ethereum Drainers Pose as Trading Bots to Steal Crypto
- ReVault! When your SoC turns against you…
- Perplexity is using stealth, undeclared crawlers to evade website no-crawl directives
- New Plague Linux malware stealthily maintains SSH access
- Fingerprinting Malware C2s with Tags
- Critical Vulnerability in NestJS Devtools Localhost RCE via Sandbox Escape
- Dahua Camera flaws allow remote hacking. Update firmware now
- Qwins Ltd Bulletproof Hosting Provider Powering Global Malware Campaigns
- Exploiting Direct Send Attackers Abuse Microsoft 365 to Deliver Internal Phishing Attacks
- Auto-Color Backdoor How Darktrace Thwarted a Stealthy Linux Intrusion
- Attackers Actively Exploiting Critical Vulnerability in Alone Theme
- Hackers Exploit Official Gaming Mouse Software to Spread Windows-based Xred Malware
- Critical Vulnerabilities Found in Tridium Niagara Framework
- Account Takeover Vulnerability Affecting Over 400K Installations Patched in Post SMTP Plugin
- BIDI Swap Unmasking the Art of URL Misleading with Bidirectional Text Tricks
- NET RFQ Request for Quote Scammers Casting Wide Net to Steal Real Goods
- Lookout Discovers Iranian APT MuddyWater Leveraging DCHSpy During Israel-Iran Conflict
- Fake Receipts Generators the rising threat to major retail brands
- British spies and SAS named in Afghan data breach
- Zyxel security advisory for path traversal vulnerability in APs
- Tracking Protestware Spread 28 npm Packages Affected by Payload Targeting Russian-Language Users
- Konfety Returns Classic Mobile Threat with New Evasion Techniques
- Global Louis Vuitton data breach impacts UK, South Korea, and Turkey
- DOGE Denizen Marko Elez Leaked API Key for xAI
- Pre-Auth SQL Injection to RCE - Fortinet FortiWeb Fabric Connector (CVE-2025-25257)
- macOS.ZuRu Resurfaces | Modified Khepri C2 Hides Inside Doctored Termius App
- At last, a use case for AI agents with sky-high ROI Stealing crypto
- Asus and Adobe vulnerabilities
- Server with Rockerbox Tax Firm Data Exposed 286GB of Records
- Risky Bulletin Browser extensions hijacked for web scraping botnet
- Attackers Inject Code into WordPress Theme to Redirect Visitors
- Animation-Driven Tapjacking on Android
- Unmasking Insecure HTTP Data Leaks in Popular Chrome Extensions
- Large Language Models (LLMs) Are Falling for Phishing Scams What Happens When AI Gives You the Wrong URL?
- Can You Trust that Verified Symbol? Exploiting IDE Extensions is Easier Than it Should Be
- Zero-day Bluetooth gap turns millions of headphones into listening stations
- Extracting Lines of Interest From Zeek Logs
- The Case of Hidden Spam Pages
- In the Wild Malware Prototype with Embedded Prompt Injection
- Don't panic, but it's only a matter of time before critical 'CitrixBleed 2' is under attack
- Another Wave North Korean Contagious Interview Campaign Drops 35 New Malicious npm Packages
- Trix Shots Remote Code Execution on Aviatrix Controller
- ConnectUnwise Threat actors abuse ConnectWise as builder for signed malware
- Androxgh0st Continues Exploitation Operators Compromise a US University For Hosting C2 Logger
- What’s Inside the Massive Chinese Data Leak
- Fault Injection – Follow the White Rabbit
- Acer Control Center Flaw Lets Attackers Run Malicious Code as Elevated User
- The TokenBreak Attack
- Inside a Dark Adtech Empire Fed by Fake CAPTCHAs
- GitHub Device Code Phishing
- From Trust to Threat Hijacked Discord Invites Used for Multi-Stage Malware Delivery
- EchoLeak Zero-Click AI Attack in Microsoft Copilot Exposes Company Data
- The Evolution of Linux Binaries in Targeted Cloud Operations
- Researcher Found Flaw to Discover Phone Numbers Linked to Any Google Account
- Peep show 40K IoT cameras worldwide stream secrets to anyone with a browser
- Critical Vulnerability Patched in SAP NetWeaver
- Blitz Malware A Tale of Game Cheats and Code Repositories
- ClickFix Attack Exploits Fake Cloudflare Turnstile to Deliver Malware
- Same Automated Impersonation for All
- Roundcube Webmail under fire critical exploit found after a decade
- Fake WordPress Caching Plugin Used to Steal Admin Credentials
- Versa Concerto Understanding and Mitigating CVE-2025-34027
- Mark Your Calendar APT41 Innovative Tactics
- The Sharp Taste of Mimo’lette Analyzing Mimo’s Latest Campaign targeting Craft CMS