Source Code of ERMAC V3.0 Malware Exposed by ‘changemeplease’ Password
A significant security breach has exposed the complete source code of ERMAC V3.0, a sophisticated banking trojan that targets over 700 financial applications worldwide. The…
Month: August 2025
The UK’s Online Safety Act explained: what you need to know
The UK’s Online Safety Act became law in October 2023 with the aim to enhance online safety for all internet users, particularly children, by placing…
New NFC-Driven PhantomCard Android Malware Attacking Banking Users
A sophisticated new Android malware dubbed PhantomCard has emerged from the shadows of Brazil’s cybercriminal underground, representing a significant evolution in mobile banking threats. This…
Palo Alto GlobalProtect Vulnerability Allows Privilege Escalation via Certificate Bypass
A newly disclosed vulnerability in Palo Alto Networks’ GlobalProtect application could allow attackers to escalate privileges and install malicious software on affected systems through improper…
Vodafone Greece automates deals for customers, saves 500 staff-days of work
Vodafone Greece claims to have saved 500 staff days a year in manual work after rolling out technology to automate previously labour-intensive marketing campaigns as…
VirtualBox 7.2 Adds Windows 11/Arm VM Support and Key Bug Fixes
Oracle has released VirtualBox 7.2.0, a major update that significantly expands ARM virtualization capabilities and introduces comprehensive Windows 11/ARM support. Released on August 14, 2025,…
New NIST Concept Paper Outlines AI-Specific Cybersecurity Framework
NIST has released a concept paper for new control overlays to secure AI systems, built on the SP 800-53 framework. Learn what the new framework…
‘Blue Locker’ Ransomware Targeting Oil & Gas Sector in Pakistan
‘Blue Locker’ Ransomware Targeting Oil & Gas Sector in Pakistan Pierluigi Paganini August 15, 2025 Blue Locker ransomware hits Pakistan’s oil & gas sector, severely…
US sanctions Grinex crypto-exchange, successor to Garantex
The U.S. Department of the Treasury has announced sanctions against Grinex, the successor to Russian cryptocurrency exchange Garantex, which was previously sanctioned for helping ransomware…
2025-8088 – WinRAR 0-Day Path Traversal Vulnerability Exploited to Execute Malware
A zero-day vulnerability in WinRAR allows malware to be deployed on unsuspecting users’ systems, highlighting the ongoing threats to popular software. Tracked as CVE-2025-8088, this…
HexStrike AI Links ChatGPT, Claude, and Copilot to 150+ Security Tools
HexStrike AI, the leading autonomous cybersecurity framework, today announced seamless integration with ChatGPT, Claude, and GitHub Copilot, enabling these AI agents to orchestrate over 150…
Cisco fixed maximum-severity security flaw in Secure Firewall Management Center
Cisco fixed maximum-severity security flaw in Secure Firewall Management Center Pierluigi Paganini August 15, 2025 Cisco patches critical Secure Firewall Management Center flaw allowing remote…