Cisco 0-Day, Record DDoS, LockBit 5.0, BMC Bugs, ShadowV2 Botnet & More
î ‚Sep 29, 2025î „Ravie LakshmananCybersecurity / Hacking News Cybersecurity never stops—and neither do hackers. While you wrapped up last week, new…
The State of AI in the SOC 2025
Security leaders are embracing AI for triage, detection engineering, and threat hunting as alert volumes and burnout hit breaking points….
First Malicious MCP Server Found Stealing Emails in Rogue Postmark-MCP Package
î ‚Sep 29, 2025î „Ravie LakshmananMCP Server / Vulnerability Cybersecurity researchers have discovered what has been described as the first-ever instance of…
LLM-Crafted SVG Files Outsmart Email Security
Microsoft is calling attention to a new phishing campaign primarily aimed at U.S.-based organizations that has likely utilized code generated…
China-Linked PlugX and Bookworm Malware Attacks Target Asian Telecom and ASEAN Networks
î ‚Sep 27, 2025î „Ravie LakshmananMalware / Network Security Telecommunications and manufacturing sectors in Central and South Asian countries have emerged as…
Why BAS Is Proof of Defense, Not Assumptions
î ‚Sep 26, 2025î „The Hacker NewsSecurity Validation / Enterprise Security Car makers don’t trust blueprints. They smash prototypes into walls. Again…
Researchers Expose SVG and PureRAT Phishing Threats Targeting Ukraine and Vietnam
î ‚Sep 26, 2025î „Ravie LakshmananMalware / Cryptocurrency A new campaign has been observed impersonating Ukrainian government agencies in phishing attacks to…
New COLDRIVER Malware Campaign Joins BO Team and Bearlyfy in Russia-Focused Cyberattacks
The Russian advanced persistent threat (APT) group known as COLDRIVER has been attributed to a fresh round of ClickFix-style attacks…
New macOS XCSSET Variant Targets Firefox with Clipper and Persistence Module
î ‚Sep 26, 2025î „Ravie LakshmananMalware / Browser Security Cybersecurity researchers have discovered an updated version of a known Apple macOS malware…
Fortra GoAnywhere CVSS 10 Flaw Exploited as 0-Day a Week Before Public Disclosure
î ‚Sep 26, 2025î „Ravie LakshmananVulnerability / Threat Intelligence Cybersecurity company watchTowr Labs has disclosed that it has “credible evidence” of active…